Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
203
security advisoryinformation disclosureDenial of serviceMageia 9: 2025-0160 moderate risk of microcode info leak and DOS attack
Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel® Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2024-28956) Insufficient resource pool in the core management mechanism for some . MGASA-2025-0160 - Updated microcode packages fix security vulnerabilities Publication date: 23 May 2025 URL: https://advisories.mageia.org/MGASA-2025-0160.html Type: security Affected Mageia releases: 9 CVE: CVE-2024-28956, CVE-2025-20103, CVE-2025-20054, CVE-2024-43420, CVE-2025-20623, CVE-2024-45332, CVE-2025-24495, CVE-2025-20012 Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel® Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2024-28956) Insufficient resource pool in the core management mechanism for some Intel® Processors may allow an authenticated user to potentially enable denial of service via local access. (CVE-2025-20103) Uncaught exception in the core management mechanism for some Intel® Processors may allow an authenticated user to potentially enable denial of service via local access. (CVE-2025-20054) Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom® processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2024-43420) Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel® Core⢠processors (10th Generation) may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2025-20623) Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for someIntel® Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2024-45332) Incorrect initialization of resource in the branch prediction unit for some Intel® Core⢠Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2025-24495) Incorrect behavior order for some Intel® Core⢠Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access. (CVE-2025-20012) References: - https://bugs.mageia.org/show_bug.cgi?id=34279 - https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20250512 - https://www.cve.org/CVERecord?id=CVE-2024-28956 - https://www.cve.org/CVERecord?id=CVE-2025-20103 - https://www.cve.org/CVERecord?id=CVE-2025-20054 - https://www.cve.org/CVERecord?id=CVE-2024-43420 - https://www.cve.org/CVERecord?id=CVE-2025-20623 - https://www.cve.org/CVERecord?id=CVE-2024-45332 - https://www.cve.org/CVERecord?id=CVE-2025-24495 - https://www.cve.org/CVERecord?id=CVE-2025-20012 SRPMS: - 9/nonfree/microcode-0.20250512-1.mga9.nonfree . Recent updates to microcode packages for Mageia address serious Intel security vulnerabilities revealed on May 23, 2025.. flexibility, security updates, information exposure, microarchitectural issues. . LinuxSecurity.com Team
May 23, 2025
Mageia
217
security advisorykernel updatecriticalOracle Linux 7 ELSA-2022-9483 Critical Kernel Update and Patches
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-9483 https://linux.oracle.com/errata/ELSA-2022-9483.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-4.14.35-2047.514.5.el7uek.x86_64.rpm kernel-uek-debug-4.14.35-2047.514.5.el7uek.x86_64.rpm kernel-uek-debug-devel-4.14.35-2047.514.5.el7uek.x86_64.rpm kernel-uek-devel-4.14.35-2047.514.5.el7uek.x86_64.rpm kernel-uek-tools-4.14.35-2047.514.5.el7uek.x86_64.rpm kernel-uek-doc-4.14.35-2047.514.5.el7uek.noarch.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates/kernel-uek-4.14.35-2047.514.5.el7uek.src.rpm Related CVEs: CVE-2022-21123 CVE-2022-21125 CVE-2022-21127 CVE-2022-21166 Description of changes: [4.14.35-2047.514.5.el7uek] - x86/speculation/mmio: Fix late microcode loading (Patrick Colp) [Orabug: 34275786] [4.14.35-2047.514.4.el7uek] - Add debugfs for controlling MMIO state data (Kanth Ghatraju) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166} - KVM: x86/speculation: Disable Fill buffer clear within guests (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation/srbds: Update SRBDS mitigation selection (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation: Add a common function for MD_CLEAR mitigation update (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - Documentation: Add documentation for Processor MMIO Stale Data (Pawan Gupta) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} - x86/speculation: Fix redundant MDS mitigation message (Waiman Long) [Orabug: 34202260] {CVE-2022-21123} {CVE-2022-21125} {CVE-2022-21127} {CVE-2022-21166} _______________________________________________ El-errata mailing list
Jun 15, 2022
•Critical
Oracle
172
security advisorysystem updateubuntuUbuntu 20.10: USN-4628-2 Critical: Intel Microcode Regression
USN-4628-1 introduced a regression in the Intel Microcode for some processors.. =========================================================================Ubuntu Security Notice USN-4628-2 November 12, 2020 intel-microcode regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.10 - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 ESM Summary: USN-4628-1 introduced a regression in the Intel Microcode for some processors. Software Description: - intel-microcode: Processor microcode for Intel CPUs Details: USN-4628-1 provided updated Intel Processor Microcode. Unfortunately, that update prevented certain processors in the Intel Tiger Lake family from booting successfully. This update reverts the microcode update for the Tiger Lake processor family. Please note that the 'dis_ucode_ldr' kernel command line option can be added in the boot menu to disable microcode loading for system recovery. We apologize for the inconvenience. Original advisory details: Moritz Lipp, Michael Schwarz, Andreas Kogler, David Oswald, Catherine Easdon, Claudio Canella, and Daniel Gruss discovered that the Intel Running Average Power Limit (RAPL) feature of some Intel processors allowed a side- channel attack based on power consumption measurements. A local attacker could possibly use this to expose sensitive information. (CVE-2020-8695) Ezra Caltum, Joseph Nuzman, Nir Shildan and Ofir Joseff discovered that some Intel(R) Processors did not properly remove sensitive information before storage or transfer in some situations. A local attacker could possibly use this to expose sensitive information. (CVE-2020-8696) Ezra Caltum, Joseph Nuzman, Nir Shildan and Ofir Joseff discovered that some Intel(R) Processors did not properly isolate shared resources in some situations. A local attacker could possibly use this to expose sensitive information. (CVE-2020-8698) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.10: intel-microcode 3.20201110.0ubuntu0.20.10.2 Ubuntu 20.04 LTS: intel-microcode 3.20201110.0ubuntu0.20.04.2 Ubuntu 18.04 LTS: intel-microcode 3.20201110.0ubuntu0.18.04.2 Ubuntu 16.04 LTS: intel-microcode 3.20201110.0ubuntu0.16.04.2 Ubuntu 14.04 ESM: intel-microcode 3.20201110.0ubuntu0.14.04.2 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4628-2 https://ubuntu.com/security/notices/USN-4628-1 https://bugs.launchpad.net/ubuntu/+source/intel-microcode/+bug/1903883 Package Information: https://launchpad.net/ubuntu/+source/intel-microcode/3.20201110.0ubuntu0.20.10.2 https://launchpad.net/ubuntu/+source/intel-microcode/3.20201110.0ubuntu0.20.04.2 https://launchpad.net/ubuntu/+source/intel-microcode/3.20201110.0ubuntu0.18.04.2 https://launchpad.net/ubuntu/+source/intel-microcode/3.20201110.0ubuntu0.16.04.2 . An Intel microcode malfunction in Ubuntu may lead to boot failures for processors, necessitating an urgent system patch.. Intel Microcode Update, Ubuntu System Alert, Processor Security Risk. . Severity: Critical. LinuxSecurity.com Team
Nov 12, 2020
•Critical
Ubuntu
202
security advisorysoftware patchimportantopenSUSE Leap 42.3 Security Advisory: CPU Spectre Fix 2018:2399-1 Important
An update that solves three vulnerabilities and has one errata is now available.. openSUSE Security Update: Security update to ucode-intel ______________________________________________________________________________ Announcement ID: openSUSE-SU-2018:2399-1 Rating: important References: #1087082 #1087083 #1089343 #1104134 Cross-References: CVE-2018-3639 CVE-2018-3640 CVE-2018-3646 Affected Products: openSUSE Leap 42.3 openSUSE Leap 15.0 ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: ucode-intel was updated to the 20180807 release. For the listed CPU chipsets this fixes CVE-2018-3640 (Spectre v3a) and is part of the mitigations for CVE-2018-3639 (Spectre v4) and CVE-2018-3646 (L1 Terminal fault). (bsc#1104134 bsc#1087082 bsc#1087083 bsc#1089343) Processor Identifier Version Products Model Stepping F-MO-S/PI Old-> New ---- new platforms ---------------------------------------- WSM-EP/WS U1 6-2c-2/03 0000001f Xeon E/L/X56xx, W36xx NHM-EX D0 6-2e-6/04 0000000d Xeon E/L/X65xx/75xx BXT C0 6-5c-2/01 00000014 Atom T5500/5700 APL E0 6-5c-a/03 0000000c Atom x5-E39xx DVN B0 6-5f-1/01 00000024 Atom C3xxx ---- updated platforms ------------------------------------ NHM-EP/WS D0 6-1a-5/03 00000019-> 0000001d Xeon E/L/X/W55xx NHM B1 6-1e-5/13 00000007-> 0000000a Core i7-8xx, i5-7xx; Xeon L3426, X24xx WSM B1 6-25-2/12 0000000e-> 00000011 Core i7-6xx, i5-6xx/4xxM, i3-5xx/3xxM, Pentium G69xx, Celeon P45xx; Xeon L3406 WSM K0 6-25-5/92 00000004-> 00000007 Core i7-6xx, i5-6xx/5xx/4xx, i3-5xx/3xx, Pentium G69xx/P6xxx/U5xxx, Celeron P4xxx/U3xxx SNB D2 6-2a-7/12 0000002d-> 0000002e Core Gen2; Xeon E3 WSM-EX A2 6-2f-2/05 00000037-> 0000003b Xeon E7 IVB E2 6-3a-9/12 0000001f-> 00000020 Core Gen3 Mobile HSW-H/S/E3 Cx/Dx 6-3c-3/32 00000024-> 00000025 Core Gen4 Desktop; Xeon E3 v3 BDW-U/Y E/F 6-3d-4/c0 0000002a-> 0000002b Core Gen5 Mobile HSW-ULT Cx/Dx 6-45-1/72 00000023-> 00000024 Core Gen4 Mobile and derived Pentium/Celeron HSW-H Cx 6-46-1/32 00000019-> 0000001a Core Extreme i7-5xxxX BDW-H/E3 E/G 6-47-1/22 0000001d-> 0000001e Core i5-5xxxR/C, i7-5xxxHQ/EQ; Xeon E3 v4 SKL-U/Y D0 6-4e-3/c0 000000c2-> 000000c6 Core Gen6 Mobile BDX-DE V1 6-56-2/10 00000015-> 00000017 Xeon D-1520/40 BDX-DE V2/3 6-56-3/10 07000012-> 07000013 Xeon D-1518/19/21/27/28/31/33/37/41/48, Pentium D1507/08/09/17/19 BDX-DE Y0 6-56-4/10 0f000011-> 0f000012 Xeon D-1557/59/67/71/77/81/87 APL D0 6-5c-9/03 0000002c-> 00000032 Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx SKL-H/S/E3 R0 6-5e-3/36 000000c2-> 000000c6 Core Gen6; Xeon E3 v5 This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2018-887=1 - openSUSE Leap 15.0: zypper in -t patch openSUSE-2018-887=1 Package List: - openSUSE Leap 42.3 (i586 x86_64): ucode-intel-20180807-28.1 ucode-intel-blob-20180807-28.1 ucode-intel-debuginfo-20180807-28.1 ucode-intel-debugsource-20180807-28.1 - openSUSE Leap 15.0 (x86_64): ucode-intel-20180807-lp150.2.7.1 References: https://www.suse.com/security/cve/CVE-2018-3639.html https://www.suse.com/security/cve/CVE-2018-3640.html https://www.suse.com/security/cve/CVE-2018-3646.html https://bugzilla.suse.com/1087082 https://bugzilla.suse.com/1087083 https://bugzilla.suse.com/1089343 https://bugzilla.suse.com/1104134 -- . Critical announcement for Arch Linux addressing various processor concerns associated with Meltdown threats and maintaining overall system integrity.. openSUSE Security Update, CPU Spectre, ucode-intel, software patch, processor fix. . Severity: Important. LinuxSecurity.com Team
Aug 17, 2018
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!