Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Mageia: 2020-0422 Moderate: Microcode Security Update for Intel Processors

mageia
Calendar Grey November 13, 2020
Dist Mageia Esm H88
MGASA-2020-0423 upgrades firmware to address security flaws, particularly local access vulnerabilities present in AMD processors.
Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access

Summary

Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2020-8694)
Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. (CVE-2020-8695)
Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2020-8696)
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2020-8698)

References

- https://bugs.mageia.org/show_bug.cgi?id=27597

-

- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html

- https://access.redhat.com/errata/RHSA-2020:5085

- https://bugs.mageia.org/show_bug.cgi?id=26995

- https://www.cve.org/CVERecord?id=CVE-2020-8694

- https://www.cve.org/CVERecord?id=CVE-2020-8695

- https://www.cve.org/CVERecord?id=CVE-2020-8696

- https://www.cve.org/CVERecord?id=CVE-2020-8698

Topics%20covered

Topics Covered

security advisory local access information disclosure severity: moderate Mageia microcode Intel Processors

Resolution

SRPMS

- 7/nonfree/microcode-0.20201110-1.mga7.nonfree

Publication date: 13 Nov 2020
URL: https://advisories.mageia.org/MGASA-2020-0422.html
Type: security
CVE: CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698

Topics%20covered

Topics Covered

security advisory local access information disclosure severity: moderate Mageia microcode Intel Processors

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here