Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2019:3348-1 Moderate: Spectre-Meltdown-Checker Security Update

suse
Calendar Grey December 19, 2019
Dist Suse Esm H88
SUSE Security Update details critical fixes for spectre-meltdown-checker with implications for enterprise systems.
An update that fixes two vulnerabilities is now available

Summary

This update for spectre-meltdown-checker fixes the following issues: - feat: implement TAA detection (CVE-2019-11135 bsc#1139073) - feat: implement MCEPSC / iTLB Multihit detection (CVE-2018-12207 bsc#1117665) - feat: taa: add TSX_CTRL MSR detection in hardware info - feat: fwdb: use both Intel GitHub repo and MCEdb to build our firmware version database - feat: use --live with --kernel/--config/--map to override file detection in live mode - enh: rework the vuln logic of MDS with --paranoid (fixes #307) - enh: explain that Enhanced IBRS is better for performance than classic IBRS - enh: kernel: autodetect customized arch kernels from cmdline - enh: kernel decompression: better tolerance against missing tools - enh: mock: implement reading from /proc/cmdline

Topics%20covered

Topics Covered

security advisory moderate update SUSE spectre-meltdown check tools

References

#1117665 #1139073

Cross- CVE-2018-12207 CVE-2019-11135

Affected Products:

SUSE Linux Enterprise Module for Basesystem 15-SP1

https://www.suse.com/security/cve/CVE-2018-12207.html

https://www.suse.com/security/cve/CVE-2019-11135.html

https://bugzilla.suse.com/1117665

https://bugzilla.suse.com/1139073

Announcement ID: SUSE-SU-2019:3348-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate update SUSE spectre-meltdown check tools

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here