AXEA:2020-144:03

リリース日: 
2020/06/15 Monday - 05:50
題名: 
microcode_ctl-20190618-1.20191115.3.el8
影響のあるチャネル: 
Asianux Server 8 for x86_64
Severity: 
N/A
Description: 

The microcode_ctl packages provide microcode updates for Intel x86 processors.

With this update, the Intel microcode version has been updated to microcode-20191112.

Users of microcode_ctl are advised to upgrade to these updated packages, which add this enhancement.

CVE-2019-0117
Insufficient access control in protected memory subsystem for Intel(R) SGX for 6th, 7th, 8th, 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Xeon(R) Processor E3-1500 v5, v6 Families; Intel(R) Xeon(R) E-2100 & E-2200 Processor Families with Intel(R) Processor Graphics may allow a privileged user to potentially enable information disclosure via local access.
CVE-2019-11135
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
CVE-2019-11139
Improper conditions check in the voltage modulation interface for some Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable denial of service via local access.

解決策: 

Update packages.

追加情報: 

N/A

ダウンロード: 

SRPMS
  1. microcode_ctl-20190618-1.20191115.3.el8.src.rpm
    MD5: 7a4593ac3e7fea67c621b6dcf382c65e
    SHA-256: 966dc3b0faeb9e3c143f2df0fdc3d98670d33eac90ac0096d55a8575bc056495
    Size: 2.96 MB

Asianux Server 8 for x86_64
  1. microcode_ctl-20190618-1.20191115.3.el8.x86_64.rpm
    MD5: 0b1dcfa5f246ca3b0bca54bf3b1f619c
    SHA-256: 54d601b83cfaa7ff81d0ad4ce54650d3e0a507fbc712cd96adbc8ee4c4b2d35c
    Size: 2.54 MB
Copyright© 2007-2015 Asianux. All rights reserved.