Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

SUSE: 2020:3279-1 Moderate: Ucode-Intel Sidechannel Attack Fix

suse
Calendar Grey November 11, 2020
Dist Suse Esm H88
SUSE has issued a Security Update related to ucode-intel, responding to vulnerabilities in Intel processors deemed moderately severe, particularly concerning potential side-channel exploits.
An update that fixes two vulnerabilities is now available

Summary

This update for ucode-intel fixes the following issues: - Intel CPU Microcode updated to 20201027 prerelease - CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446) - CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594) # New Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | TGL | B1 | 06-8c-01/80 | | 00000068 | Core Gen11 Mobile | CPX-SP | A1 | 06-55-0b/bf | | 0700001e | Xeon Scalable Gen3 | CML-H | R1 | 06-a5-02/20 | | 000000e0 | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | | 000000e0 | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | | 000000e0 | Core Gen10 | CML-U62 V2 | K0 | 06-a6-01/80 | | 000000e0 | Core Gen10 Mobile # Updated

Topics%20covered

Topics Covered

security advisory moderate SUSE Linux cloud security OpenStack sidechannel attack Intel microcode

References

#1170446 #1173594

Cross- CVE-2020-8695 CVE-2020-8698

Affected Products:

SUSE OpenStack Cloud Crowbar 9

SUSE OpenStack Cloud Crowbar 8

SUSE OpenStack Cloud 9

SUSE OpenStack Cloud 8

SUSE OpenStack Cloud 7

SUSE Linux Enterprise Server for SAP 12-SP4

SUSE Linux Enterprise Server for SAP 12-SP3

SUSE Linux Enterprise Server for SAP 12-SP2

SUSE Linux Enterprise Server 12-SP4-LTSS

SUSE Linux Enterprise Server 12-SP3-LTSS

SUSE Linux Enterprise Server 12-SP3-BCL

SUSE Linux Enterprise Server 12-SP2-LTSS

SUSE Linux Enterprise Server 12-SP2-BCL

SUSE Enterprise Storage 5

HPE Helion Openstack 8

https://www.suse.com/security/cve/CVE-2020-8695.html

https://www.suse.com/security/cve/CVE-2020-8698.html

htt...

Read the Full Advisory

Announcement ID: SUSE-SU-2020:3279-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate SUSE Linux cloud security OpenStack sidechannel attack Intel microcode

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here