intel-ucode

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Microcode update files for Intel CPUs
Version 20191115-3 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1068 20190918-1 20191112-1 High Fixed
AVG-582 20171117-1 20180108-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2019-11139 AVG-1068 Medium No Denial of service
It was discovered that certain Intel Xeon processors did not properly restrict access to a voltage modulation interface. A local privileged attacker could...
CVE-2019-11135 AVG-1068 High No Private key recovery
A flaw was found in the way Intel CPUs handle speculative execution of instructions when the TSX Asynchronous Abort (TAA) error occurs. A local...
CVE-2019-0117 AVG-1068 High No Information disclosure
A flaw was found in the implementation of SGX around the access control of protected memory. A local attacker of a system with SGX enabled and an affected...
CVE-2017-5715 AVG-582 High No Access restriction bypass
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used...

Advisories

Date Advisory Group Severity Description
13 Nov 2019 ASA-201911-14 AVG-1068 High multiple issues
10 Jan 2018 ASA-201801-10 AVG-582 High access restriction bypass