Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDFBE10A8A-05A1-11EA-9DFA-F8B156AC3FF9
HistoryNov 14, 2019 - 12:00 a.m.

FreeBSD -- Intel CPU Microcode Update

2019-11-1400:00:00
vuxml.freebsd.org
128

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

0.975 High

EPSS

Percentile

100.0%

JSON

Starting with version 1.26, the devcpu-data port/package includes
updates and mitigations for the following technical and security
advisories (depending on CPU model).
Intel TSX Updates (TAA) CVE-2019-11135 Voltage Modulation
Vulnerability CVE-2019-11139 MD_CLEAR Operations
CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-11091
TA Indirect Sharing CVE-2017-5715 EGETKEY CVE-2018-12126
CVE-2018-12127 CVE-2018-12130 CVE-2018-11091 JCC SKX102
Erratum
Updated microcode includes mitigations for
CPU issues, but may also cause a performance regression due
to the JCC erratum mitigation. Please visit
http://www.intel.com/benchmarks for further information.

Please visit http://www.intel.com/security for
detailed information on these advisories as well as a list of
CPUs that are affected.
Operating a CPU without the latest microcode may result in erratic or
unpredictable behavior, including system crashes and lock ups.
Certain issues listed in this advisory may result in the leakage of
privileged system information to unprivileged users. Please refer to
the security advisories listed above for detailed information.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd-kernel= 12.1UNKNOWN
FreeBSDanynoarchfreebsd-kernel< 12.1_1UNKNOWN

Related

freebsd_advisory 2
nessus 90
oraclelinux 7
debian 5
openvas 31
fedora 2
checkpoint_security 1
ibm 6
redhat 21
centos 4
f5 1
suse 5
ubuntu 6
cloudfoundry 1
xen 1
mageia 1
huawei 1
osv 6
virtuozzo 1
amazon 1
vmware 1
intel 1
thn 1
threatpost 1
myhack58 2
freebsd_advisory
freebsd_advisory
FreeBSD-SA-19:26.mcu
2019-11-12 00:00:00
FreeBSD-SA-19:07.mds
2019-05-14 00:00:00
nessus
nessus
FreeBSD : FreeBSD -- Intel CPU Microcode Update (fbe10a8a-05a1-11ea-9dfa-f8b156ac3ff9) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) (Spectre)
2019-11-26 00:00:00
Debian DLA-1989-1 : linux security update
2019-11-13 00:00:00
Debian DSA-4565-1 : intel-microcode - security update
2019-11-14 00:00:00
oraclelinux
oraclelinux
virt:rhel security update
2019-07-30 00:00:00
libvirt security update
2019-05-14 00:00:00
qemu-kvm security update
2019-05-15 00:00:00
debian
debian
[SECURITY] [DLA 1989-1] linux security update
2019-11-12 21:25:19
[SECURITY] [DLA 2051-1] intel-microcode security update
2019-12-30 22:33:18
[SECURITY] [DLA 1789-1] intel-microcode security update
2019-05-16 03:05:39
openvas
openvas
openSUSE: Security Advisory for ucode-intel (openSUSE-SU-2019:2509-1)
2020-01-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2957-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2988-1)
2021-04-19 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: xen-4.11.1-5.fc30
2019-05-18 01:05:01
[SECURITY] Fedora 30 Update: qemu-3.1.0-8.fc30
2019-05-17 01:08:38
checkpoint_security
checkpoint_security
Check Point Response to Intel Microarchitectural Data Sampling Vulnerabilities (Fallout, RIDL, Zombieload) (CVE-2018-12126 , CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)
2019-05-15 20:26:43
ibm
ibm
Security Bulletin: IBM Cloud Pak System is vulnerable to Intel Microarchitectural Data Sampling (MDS) Vulnerabilites
2020-05-06 12:02:05
Security Bulletin: IBM Security QRadar Packet Capture is vulnerable to Intel Microarchitectural Data Sampling (MDS) Vulnerabilites (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)
2020-10-28 17:16:55
Security Bulletin: IBM QRadar SIEM is vulnerable to Intel Microarchitectural Data Sampling (MDS) Vulnerabilites (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)
2019-11-06 11:47:58
redhat
redhat
(RHSA-2019:1201) Important: qemu-kvm-rhev security update
2019-05-14 20:39:25
(RHSA-2019:1208) Important: rhvm-appliance security update
2019-05-14 20:38:48
(RHSA-2019:1197) Important: libvirt security update
2019-05-14 20:13:13
centos
centos
libvirt security update
2019-05-15 20:33:30
kernel, perf, python security update
2019-05-15 15:42:15
qemu security update
2019-05-15 20:31:32
f5
f5
K41283800 : INTEL-SA-00233 Microarchitectural Data Sampling Advisory
2019-05-15 00:00:00
suse
suse
Security update for ucode-intel (important)
2019-05-16 00:00:00
Security update for ucode-intel (important)
2019-07-24 00:00:00
Security update for qemu (important)
2019-05-20 00:00:00
ubuntu
ubuntu
Intel Microcode update
2019-05-22 00:00:00
Intel Microcode update
2019-11-12 00:00:00
libvirt update
2019-05-16 00:00:00
cloudfoundry
cloudfoundry
USN-3977-3: Intel Microcode update (AKA ZombieLoad Attack) | Cloud Foundry
2019-07-12 00:00:00
xen
xen
Microarchitectural Data Sampling speculative side channel
2019-05-14 15:51:00
mageia
mageia
Updated virtualbox packages fix security vulnerabilities
2019-05-18 15:33:10
huawei
huawei
Security Advisory - Intel Microarchitectural Data Sampling (MDS) vulnerabilities
2019-07-12 00:00:00
osv
osv
intel-microcode - security update
2019-11-13 00:00:00
intel-microcode - security update
2019-05-15 00:00:00
intel-microcode - security update
2019-06-20 00:00:00
virtuozzo
virtuozzo
Important kernel security update: New kernel 2.6.32-042stab138.1; Virtuozzo 6.0 Update 12 Hotfix 40 (6.0.12-3739)
2019-05-16 00:00:00
amazon
amazon
Important: qemu-kvm
2019-08-07 23:12:00
vmware
vmware
VMware product updates enable Hypervisor-Specific Mitigations, Hypervisor-Assisted Guest Mitigations, and Operating System-Specific Mitigations for Microarchitectural Data Sampling (MDS) Vulnerabilities (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091)
2019-05-14 00:00:00
intel
intel
Microarchitectural Data Sampling Advisory
2021-05-11 00:00:00
thn
thn
New Class of CPU Flaws Affect Almost Every Intel Processor Since 2011
2019-05-14 20:20:00
threatpost
threatpost
Intel CPUs Impacted By New Class of Spectre-Like Attacks
2019-05-14 18:01:49
myhack58
myhack58
Zombieload: Intel CPU exposure of a new side channel attack-exploit warning-the black bar safety net
2019-05-15 00:00:00
Intel official for 5 on 15, the aeration out of the CPU side channel vulnerabilities“ZombieLoad”detailed technical analysis on-the vulnerability warning-the black bar safety net
2019-05-20 00:00:00

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

0.975 High

EPSS

Percentile

100.0%

JSON
Related for FBE10A8A-05A1-11EA-9DFA-F8B156AC3FF9
freebsd_advisory2nessus90oraclelinux7debian5openvas31fedora2checkpoint_security1ibm6redhat21centos4f51suse5ubuntu6cloudfoundry1xen1mageia1huawei1osv6virtuozzo1amazon1vmware1intel1thn1threatpost1myhack582