Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-3808-1:967BD
HistoryMay 04, 2024 - 3:21 p.m.

[SECURITY] [DLA 3808-1] intel-microcode security update

2024-05-0415:21:16
lists.debian.org
22
cve-2023-28746
cve-2023-43490
cve-2023-39368
cve-2023-22655
securityupdate
debian10buster
intel-microcode
cve-2023-38575
microcodeupdates

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

48.0%

JSON

Debian LTS Advisory DLA-3808-1 [email protected]
https://www.debian.org/lts/security/ Tobias Frost
May 04, 2024 https://wiki.debian.org/LTS

Package : intel-microcode
Version : 3.20240312.1~deb10u1
CVE ID : CVE-2023-22655 CVE-2023-28746 CVE-2023-38575 CVE-2023-39368
CVE-2023-43490
Debian Bug : 1066108

Intel has released microcode updates, addressing serveral vulnerabilties.

CVE-2023-22655

Protection mechanism failure in some 3rd and 4th Generation Intel(R)
Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow
a privileged user to potentially enable escalation of privilege via
local access.

CVE-2023-28746

Information exposure through microarchitectural state after
transient execution from some register files for some Intel(R)
Atom(R) Processors may allow an authenticated user to potentially
enable information disclosure via local access.

CVE-2023-38575

Non-transparent sharing of return predictor targets between contexts
in some Intel(R) Processors may allow an authorized user to
potentially enable information disclosure via local access.

CVE-2023-39368

Protection mechanism failure of bus lock regulator for some Intel(R)
Processors may allow an unauthenticated user to potentially enable
denial of service via network access.

CVE-2023-43490

Incorrect calculation in microcode keying mechanism for some
Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a
privileged user to potentially enable information disclosure via
local access.

For Debian 10 buster, these problems have been fixed in version
3.20240312.1~deb10u1.

We recommend that you upgrade your intel-microcode packages.

For the detailed security status of intel-microcode please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/intel-microcode

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
Attachment:
signature.asc
Description: PGP signature

OSVersionArchitecturePackageVersionFilename
Debian12mipselusb-serial-modules-6.1.0-19-mips32r2el-di< 6.1.82-1usb-serial-modules-6.1.0-19-mips32r2el-di_6.1.82-1_mipsel.deb
Debian11mips64elcrc-modules-5.10.0-29-octeon-di< 5.10.216-1crc-modules-5.10.0-29-octeon-di_5.10.216-1_mips64el.deb
Debian11armelipv6-modules-5.10.0-29-marvell-di< 5.10.216-1ipv6-modules-5.10.0-29-marvell-di_5.10.216-1_armel.deb
Debian11mips64elppp-modules-5.10.0-29-loongson-3-di< 5.10.216-1ppp-modules-5.10.0-29-loongson-3-di_5.10.216-1_mips64el.deb
Debian12s390xlinux-perf< 6.1.82-1linux-perf_6.1.82-1_s390x.deb
Debian12mips64elusb-modules-6.1.0-19-5kc-malta-di< 6.1.82-1usb-modules-6.1.0-19-5kc-malta-di_6.1.82-1_mips64el.deb
Debian10amd64linux-perf-5.10< 5.10.216-1~deb10u1linux-perf-5.10_5.10.216-1~deb10u1_amd64.deb
Debian12mips64elf2fs-modules-6.1.0-19-mips64r2el-di< 6.1.82-1f2fs-modules-6.1.0-19-mips64r2el-di_6.1.82-1_mips64el.deb
Debian12mips64elmmc-core-modules-6.1.0-19-5kc-malta-di< 6.1.82-1mmc-core-modules-6.1.0-19-5kc-malta-di_6.1.82-1_mips64el.deb
Debian12i386intel-microcode< 3.20240312.1~deb12u1intel-microcode_3.20240312.1~deb12u1_i386.deb
Rows per page:
1-10 of 15691

Related

freebsd 1
nessus 54
openvas 38
osv 14
mageia 2
redos 1
citrix 1
cloudfoundry 1
ubuntu 1
hp 1
amazon 1
fedora 5
cvelist 5
cve 5
redhatcve 5
debiancve 5
ubuntucve 5
nvd 5
vulnrichment 5
alpinelinux 5
veracode 5
intel 2
mscve 1
xen 1
photon 2
chrome 1
mskb 15
gentoo 1
kaspersky 2
almalinux 1
rapid7blog 1
rocky 2
redhat 4
oraclelinux 1
freebsd
freebsd
Intel CPUs -- multiple vulnerabilities
2023-03-12 00:00:00
nessus
nessus
Debian dla-3808 : intel-microcode - security update
2024-05-04 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ucode-intel (SUSE-SU-2024:1139-1)
2024-04-09 00:00:00
FreeBSD : Intel CPUs -- multiple vulnerabilities (b6dd9d93-e09b-11ee-92fc-1c697a616631)
2024-03-13 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0103)
2024-04-05 00:00:00
Debian: Security Advisory (DLA-3808-1)
2024-05-06 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0917-1)
2024-05-07 00:00:00
osv
osv
intel-microcode - security update
2024-05-04 00:00:00
ucode-intel-20240312-1.1 on GA media
2024-06-15 00:00:00
intel-microcode vulnerabilities
2024-05-29 07:13:42
mageia
mageia
Updated microcode packages fix security vulnerabilities
2024-03-31 06:27:58
Updated xen packages fix security vulnerabilities
2024-04-10 07:03:52
redos
redos
ROS-20240902-08
2024-09-02 00:00:00
citrix
citrix
Citrix Hypervisor Security Update for CVE-2023-39368 and CVE-2023-38575
2024-03-12 17:06:58
cloudfoundry
cloudfoundry
USN-6797-1: Intel Microcode vulnerabilities | Cloud Foundry
2024-07-25 00:00:00
ubuntu
ubuntu
Intel Microcode vulnerabilities
2024-05-29 00:00:00
hp
hp
Intel 2024.1 IPU - BIOS March 2024 Security Updates
2024-03-13 00:00:00
amazon
amazon
Medium: microcode_ctl
2024-03-12 12:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: microcode_ctl-2.1-61.1.fc40
2024-08-08 02:48:02
[SECURITY] Fedora 39 Update: microcode_ctl-2.1-58.1.fc39
2024-08-13 01:35:40
[SECURITY] Fedora 38 Update: xen-4.17.2-8.fc38
2024-03-30 01:44:40
cvelist
cvelist
CVE-2023-43490
2024-03-14 16:45:44
CVE-2023-39368
2024-03-14 16:45:46
CVE-2023-22655
2024-03-14 16:45:46
cve
cve
CVE-2023-43490
2024-03-14 17:15:51
CVE-2023-22655
2024-03-14 17:15:49
CVE-2023-39368
2024-03-14 17:15:51
redhatcve
redhatcve
CVE-2023-43490
2024-03-21 14:31:51
CVE-2023-22655
2024-03-21 14:31:11
CVE-2023-39368
2024-03-21 14:31:42
debiancve
debiancve
CVE-2023-43490
2024-03-14 17:15:51
CVE-2023-39368
2024-03-14 17:15:51
CVE-2023-22655
2024-03-14 17:15:49
ubuntucve
ubuntucve
CVE-2023-22655
2024-03-12 00:00:00
CVE-2023-43490
2024-03-12 00:00:00
CVE-2023-39368
2024-03-12 00:00:00
nvd
nvd
CVE-2023-22655
2024-03-14 17:15:49
CVE-2023-43490
2024-03-14 17:15:51
CVE-2023-39368
2024-03-14 17:15:51
vulnrichment
vulnrichment
CVE-2023-39368
2024-03-14 16:45:46
CVE-2023-22655
2024-03-14 16:45:46
CVE-2023-43490
2024-03-14 16:45:44
alpinelinux
alpinelinux
CVE-2023-39368
2024-03-14 17:15:51
CVE-2023-43490
2024-03-14 17:15:51
CVE-2023-22655
2024-03-14 17:15:49
veracode
veracode
Information Disclosure
2024-03-15 23:42:33
Privilege Escalation
2024-03-16 17:54:14
Denial Of Service (DOS)
2024-03-17 12:36:38
intel
intel
2024.1 IPU OOB - Intel® Xeon® D Processor Advisory
2024-03-12 00:00:00
2024.1 IPU - Intel® Atom® Processor Advisory
2024-03-12 00:00:00
mscve
mscve
Intel: CVE-2023-28746 Register File Data Sampling (RFDS)
2024-03-12 07:00:00
xen
xen
x86: Register File Data Sampling
2024-03-12 16:44:00
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0245
2024-04-12 00:00:00
Moderate Photon OS Security Update - PHSA-2024-4.0-0607
2024-05-10 00:00:00
chrome
chrome
Stable Channel Update for ChromeOS / ChromeOS Flex
2024-03-05 00:00:00
mskb
mskb
March 12, 2024—KB5035920 (Monthly Rollup)
2024-03-12 07:00:00
March 12, 2024—KB5035888 (Monthly Rollup)
2024-03-12 07:00:00
March 12, 2024—KB5035919 (Security-only update)
2024-03-12 07:00:00
gentoo
gentoo
Xen: Multiple Vulnerabilities
2024-09-22 00:00:00
kaspersky
kaspersky
KLA65123 Multiple vulnerabilities in Microsoft Products (ESU)
2024-03-12 00:00:00
KLA65126 Multiple vulnerabilities in Microsoft Windows
2024-03-12 00:00:00
almalinux
almalinux
Important: kernel security update
2024-08-08 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - March 2024
2024-03-12 19:47:44
rocky
rocky
kernel security update
2024-09-17 00:57:33
kernel security update
2024-08-21 14:52:19
redhat
redhat
(RHSA-2024:5101) Important: kernel security update
2024-08-08 04:34:29
(RHSA-2024:5438) Moderate: OpenShift Container Platform 4.15.28 packages and security update
2024-08-21 03:33:53
(RHSA-2024:5432) Moderate: OpenShift Container Platform 4.14.35 security update
2024-08-21 21:38:55
oraclelinux
oraclelinux
kernel security update
2024-08-08 00:00:00

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

48.0%

JSON
Related for DEBIAN:DLA-3808-1:967BD
freebsd1nessus54openvas38osv14mageia2redos1citrix1cloudfoundry1ubuntu1hp1amazon1fedora5cvelist5cve5redhatcve5debiancve5ubuntucve5nvd5vulnrichment5alpinelinux5veracode5intel2mscve1xen1photon2chrome1mskb15gentoo1kaspersky2almalinux1rapid7blog1rocky2redhat4oraclelinux1