SB2019111427 - OpenSUSE Linux update for ucode-intel
Published: November 14, 2019
Security Bulletin ID
SB2019111427
Severity
Low
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Resource management error (CVE-ID: CVE-2019-11135)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the TSX Asynchronous Abort (TAA) in Intel CPUs. The TAA condition, on some microprocessors utilizing speculative execution, may allow an authenticated user to potentially enable information disclosure via a side channel.2) Resource management error (CVE-ID: CVE-2019-11139)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper conditions check in the voltage modulation interface for some Intel(R) Xeon(R) Scalable Processors. A local user can perform a denial of service attack.
The following Intel Xeon Scalable Processors are affected:
- Intel Xeon Platinum Processors: 8153, 8156, 8158, 8160, 8160F, 8160M, 8160T, 8164, 8168, 8170, 8170M, 8176, 8176F, 8176M, 8180, 8180M
- Intel
Xeon Gold Processors: 5115, 5118, 5119T, 5120, 5120T, 5122, 6126,
6126F, 6126T, 6128, 6130, 6130F, 6130T, 6132, 6134, 6134M, 6136, 6138,
6138F, 6138T, 6140, 6140M, 6142, 6142F, 6142M, 6144, 6146, 6148, 6148F,
6150, 6152, 6154
- Intel Xeon Silver Processors: 4108, 4109T, 4110, 4112, 4114, 4114T, 4116, 4116T
- Intel Xeon Bronze Processors: 3104, 3106
Remediation
Install update from vendor's website.