Debian: DSA-5924-1 critical: Intel microcode mitigates ITS and injection
debian
May 23, 2025
This update ships updated CPU microcode for some types of Intel CPUs
Summary
For CPUs affected to ITS (Indirect Target Selection), to fully mitigate
the vulnerability it is also necessary to update the Linux kernel
packages released in a separate, forthcoming DSA.
For details on the Indirect Target Selection (ITS) vulnerability please
refer to https://www.vusec.net/projects/training-solo/ and
https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/indirect-target-selection.html .
For details on the Branch Privilege Injection vulnerability please refer
to https://comsec.ethz.ch/research/microarch/branch-privilege-injection/
For the stable distribution (bookworm), these problems have been fixed in
version 3.20250512.1~deb12u1.
We recommend that you upgrade your intel-microcode packages.
For the detailed security status of intel-microcode please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/source-package/intel-microcode
Further information about Debian Security Advisories, how to ...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: intel-microcode
CVE ID: CVE-2024-28956 CVE-2024-43420 CVE-2024-45332 CVE-2025-20012
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!