SB2020112431 - Red Hat Enterprise Linux 7.7 update for Intel microcode

Security Bulletin ID SB2020112431

Severity

Low

Patch available

YES

Number of vulnerabilities 3

Exploitation vector Local access

Highest impact Information disclosure

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Observable Response Discrepancy (CVE-ID: CVE-2020-8695)

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to observable discrepancy in the Running Average Power Limit (RAPL) Interface. A local administrator can gain access to sensitive information on the target system.

Affected products:

Product Collection	Vertical Segment	CPUID
8th Generation Intel® Core™ Processor Family	Mobile	806E9
10th Generation Intel® Core™ Processor Family	Mobile	806EC
8th Generation Intel® Core™ Processor Family	Mobile	906EA
9th Generation Intel® Core™ Processor Family	Mobile	906EC
8th Generation Intel® Core™ Processor Family	Desktop	906EA
9th Generation Intel® Core™ Processor Family	Desktop	906EC
Intel® Xeon® Processor E Family	Server Workstation AMT Server	906EA
8th Generation Intel® Core™ Processor Family	Mobile	806EA
8th Generation Intel® Core™ Processor Family Intel® Pentium® Gold Processor Series Intel® Celeron® Processor G Series	Desktop	906EB
Intel® Xeon® Processor E Family	Server Workstation AMT Server	906EA
8th Generation Intel® Core™ Processor Family	Desktop	906EA
9th Generation Intel® Core™ Processor Family	Desktop	906ED
9th Generation Intel® Core™ Processor Family	Desktop	906ED
10th Generation Intel® Core™ Processor Family	Mobile	A0660
10th Generation Intel® Core™ Processor Family	Mobile	A0661
10th Generation Intel® Core™ Processor Family	Mobile	806EC
10th Generation Intel® Core™ Processor Family	Desktop	A0653
10th Generation Intel® Core™ Processor Family	Mobile	A0655
10th Generation Intel® Core™ Processor Family	Mobile	A0652
Intel® Pentium® Processor Silver Series Intel® Celeron® Processor J Series Intel® Celeron® Processor N Series	Desktop Mobile Embedded	706A1
Intel® Pentium® Processor Silver Series Intel® Celeron® Processor J Series Intel® Celeron® Processor N Series	Desktop Mobile Embedded	706A8
10th Generation Intel® Core™ Processor Family	Mobile	706E5
8th Generation Intel® Core™ Processor Family	Mobile	906E9
7th Generation Intel® Core™ Processor Family	Mobile Embedded	906E9
8th Generation Intel® Core™ Processor Family	Mobile	806EA
7th Generation Intel® Core™ Processor Family	Desktop Embedded	906E9
7th Generation Intel® Core™ Processor Family	Mobile	806E9
7th Generation Intel® Core™ Processor Family	Mobile	806E9
Intel® Core™ X-series Processors	Desktop	906E9
Intel® Xeon® Processor E3 v6 Family	Server Workstation AMT Server	906E9
7th Generation Intel® Core™ Processor Family	Mobile	806E9
6th Generation Intel® Core™ Processor Family	Mobile	506E3
6th Generation Intel® Core™ Processor Family	Desktop Embedded	506E3
6th Generation Intel® Core™ Processors	Mobile	406E3
6th Generation Intel® Core™ Processor Family	Mobile	406E3
Intel® Xeon® Processor E3 v5 Family	Server Workstation AMT Server	506E3
6th Generation Intel® Core™ Processor Family	Mobile	406E3
8th Generation Intel® Core™ Processors	Mobile	806EB
8th Generation Intel® Core™ Processors	Mobile	806EC

2) Security restrictions bypass (CVE-ID: CVE-2020-8696)

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to improper removal of sensitive information before storage or transfer in some Intel(R) Processors. A local user can gain access to sensitive information on the system.

3) Security restrictions bypass (CVE-ID: CVE-2020-8698)

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to improper isolation of shared resources in some Intel(R) Processors. A local user can gain access to sensitive information on the system.

Remediation

Install update from vendor's website.

References

https://access.redhat.com/errata/RHSA-2020:5190