Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.4.2020.14540.1
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2020:14540-1)
Summary:The remote host is missing an update for the 'microcode_ctl' package(s) announced via the SUSE-SU-2020:14540-1 advisory.
Description:Summary:
The remote host is missing an update for the 'microcode_ctl' package(s) announced via the SUSE-SU-2020:14540-1 advisory.

Vulnerability Insight:
This update for microcode_ctl fixes the following issue:

Updated Intel CPU Microcode to 20201027 prerelease (bsc#1170446)

CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX)

CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381
(bsc#1173594)

# New Platforms: Processor Stepping F-M-S/PI Old Ver
New Ver Products
:---------------:---------:------------:---------:---------:---------
TGL B1 06-8c-01/80 00000068 Core Gen11 Mobile CPX-SP A1 06-55-0b/bf
0700001e Xeon Scalable Gen3 CML-H R1 06-a5-02/20
000000e0 Core Gen10 Mobile CML-S62 G1
06-a5-03/22 000000e0 Core Gen10 CML-S102 Q0
06-a5-05/22 000000e0 Core Gen10 CML-U62 V2
K0 06-a6-01/80 000000e0 Core Gen10 Mobile # Updated Platforms: Processor Stepping F-M-S/PI Old Ver New Ver
Products
:---------------:---------:------------:---------:---------:---------
GKL-R R0 06-7a-08/01 00000016 00000018 Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 SKL-U/Y D0
06-4e-03/c0 000000d6 000000e2 Core Gen6 Mobile SKL-U23e
K1 06-4e-03/c0 000000d6 000000e2 Core Gen6 Mobile
APL D0 06-5c-09/03 00000038 00000040 Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx APL E0
06-5c-0a/03 00000016 0000001e Atom x5-E39xx SKL-H/S
R0/N0 06-5e-03/36 000000d6 000000e2 Core Gen6, Xeon E3 v5
HSX-E/EP Cx/M1 06-3f-02/6f 00000043 00000044 Core Gen4 X series, Xeon E5 v3 SKX-SP B1 06-55-03/97 01000157
01000159 Xeon Scalable SKX-SP H0/M0/U0 06-55-04/b7
02006906 02006a08 Xeon Scalable SKX-D M1
06-55-04/b7 02006906 02006a08 Xeon D-21xx CLX-SP
B0 06-55-06/bf 04002f01 04003003 Xeon Scalable Gen2
CLX-SP B1 06-55-07/bf 05002f01 05003003 Xeon Scalable Gen2 ICL-U/Y D1 06-7e-05/80 00000078
000000a0 Core Gen10 Mobile AML-Y22 H0 06-8e-09/10
000000d6 000000de Core Gen8 Mobile KBL-U/Y H0
06-8e-09/c0 000000d6 000000de Core Gen7 Mobile CFL-U43e
D0 06-8e-0a/c0 000000d6 000000e0 Core Gen8 Mobile
Affected Software/OS:
'microcode_ctl' package(s) on SUSE Linux Enterprise Server 11-SP4, SUSE Linux Enterprise Point of Sale 11-SP3

Solution:
Please install the updated package(s).

CVSS Score:
2.1

CVSS Vector:
AV:L/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-8695
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AQ24MFBVH3HJW3PNRQBRY4YXKC7GA57W/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEM2FZWVE4FNGYNQU3WCBAWTZRBWDYUR/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00389
https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-8698
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.