Lucene search
Ubuntu Security Notice (C) 2023-2024 Canonical, Inc. / NASL script (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-6485-1.NASLHistoryNov 16, 2023 - 12:00 a.m.
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Intel Microcode vulnerability (USN-6485-1)
2023-11-1600:00:00
Ubuntu Security Notice (C) 2023-2024 Canonical, Inc. / NASL script (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
ubuntu
16.04
18.04
20.04
22.04
23.04
23.10
esm
lts
intel microcode
vulnerability
usn-6485-1
escalation of privilege
information disclosure
denial of service
nessus
scanner
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0
Percentile
5.1%
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has a package installed that is affected by a vulnerability as referenced in the USN-6485-1 advisory.
Benoit Morgan, Paul Grosen, Thais Moreira Hamasaki, Ke Sun, Alyssa Milburn, Hisham Shafi, Nir Shlomovich, Tavis Ormandy, Daniel Moghimi, Josh Eads, Salman Qazi, Alexandra Sandulescu, Andy Nguyen, Eduardo Vela, Doug Kwan, and Kostik Shtoyk discovered that some Intel(R) Processors did not properly handle certain sequences of processor instructions. A local attacker could possibly use this to cause a core hang (resulting in a denial of service), gain access to sensitive information or possibly escalate their privileges.
Tenable has extracted the preceding description block directly from the Ubuntu security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the applicationโs self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-6485-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##
include('compat.inc');
if (description)
{
script_id(185930);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/27");
script_cve_id("CVE-2023-23583");
script_xref(name:"USN", value:"6485-1");
script_name(english:"Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Intel Microcode vulnerability (USN-6485-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has a package installed that is
affected by a vulnerability as referenced in the USN-6485-1 advisory.
Benoit Morgan, Paul Grosen, Thais Moreira Hamasaki, Ke Sun, Alyssa Milburn, Hisham Shafi, Nir Shlomovich,
Tavis Ormandy, Daniel Moghimi, Josh Eads, Salman Qazi, Alexandra Sandulescu, Andy Nguyen, Eduardo Vela,
Doug Kwan, and Kostik Shtoyk discovered that some Intel(R) Processors did not properly handle certain
sequences of processor instructions. A local attacker could possibly use this to cause a core hang
(resulting in a denial of service), gain access to sensitive information or possibly escalate their
privileges.
Tenable has extracted the preceding description block directly from the Ubuntu security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-6485-1");
script_set_attribute(attribute:"solution", value:
"Update the affected intel-microcode package.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-23583");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/11/09");
script_set_attribute(attribute:"patch_publication_date", value:"2023/11/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/11/16");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:esm");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:esm");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:23.04");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:23.10");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:intel-microcode");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2023-2024 Canonical, Inc. / NASL script (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl", "ubuntu_pro_sub_detect.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release || '18.04' >< os_release || '20.04' >< os_release || '22.04' >< os_release || '23.04' >< os_release || '23.10' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04 / 18.04 / 20.04 / 22.04 / 23.04 / 23.10', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var ubuntu_pro_detected = get_kb_item('Host/Ubuntu/Pro/Services/esm-apps');
ubuntu_pro_detected = !empty_or_null(ubuntu_pro_detected);
var pro_caveat_needed = FALSE;
var pkgs = [
{'osver': '16.04', 'pkgname': 'intel-microcode', 'pkgver': '3.20231114.0ubuntu0.16.04.1+esm1', 'ubuntu_pro': TRUE},
{'osver': '18.04', 'pkgname': 'intel-microcode', 'pkgver': '3.20231114.0ubuntu0.18.04.1+esm1', 'ubuntu_pro': TRUE},
{'osver': '20.04', 'pkgname': 'intel-microcode', 'pkgver': '3.20231114.0ubuntu0.20.04.1', 'ubuntu_pro': FALSE},
{'osver': '22.04', 'pkgname': 'intel-microcode', 'pkgver': '3.20231114.0ubuntu0.22.04.1', 'ubuntu_pro': FALSE},
{'osver': '23.04', 'pkgname': 'intel-microcode', 'pkgver': '3.20231114.0ubuntu0.23.04.1', 'ubuntu_pro': FALSE},
{'osver': '23.10', 'pkgname': 'intel-microcode', 'pkgver': '3.20231114.0ubuntu0.23.10.1', 'ubuntu_pro': FALSE}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var osver = NULL;
var pkgname = NULL;
var pkgver = NULL;
if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
var pro_required = NULL;
if (!empty_or_null(package_array['ubuntu_pro'])) pro_required = package_array['ubuntu_pro'];
if (osver && pkgname && pkgver) {
if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) {
flag++;
if (!ubuntu_pro_detected && !pro_caveat_needed) pro_caveat_needed = pro_required;
}
}
}
if (flag)
{
var extra = '';
if (pro_caveat_needed) {
extra += 'NOTE: This vulnerability check contains fixes that apply to packages only \n';
extra += 'available in Ubuntu ESM repositories. Access to these package security updates \n';
extra += 'require an Ubuntu Pro subscription.\n\n';
}
extra += ubuntu_report_get();
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : extra
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'intel-microcode');
}
Related
mageia
mageia
Updated microcode fixes bugs and a security vulnerability
2024-02-09 04:34:03
cvelist
cvelist
CVE-2023-23583
2023-11-14 19:04:24
redhatcve
redhatcve
CVE-2023-23583
2023-11-14 21:09:01
nessus
nessus
Debian DLA-3690-1 : intel-microcode - LTS security update
2023-12-17 00:00:00
Fedora 37 : microcode_ctl (2023-40e71fe5b9)
2023-11-22 00:00:00
Oracle Linux 9 : microcode_ctl (ELSA-2023-12991)
2023-11-16 00:00:00
githubexploit
githubexploit
f5
f5
K000139652: Intel CPU vulnerability CVE-2023-23583
2024-05-16 00:00:00
oraclelinux
oraclelinux
microcode_ctl security update
2023-11-13 00:00:00
microcode_ctl security update
2023-11-16 00:00:00
microcode_ctl security update
2023-11-13 00:00:00
cve
cve
CVE-2023-23583
2023-11-14 19:15:18
amazon
amazon
Important: microcode_ctl
2023-11-10 20:56:00
Important: microcode_ctl
2023-11-09 19:19:00
prion
prion
Information disclosure
2023-11-14 19:15:00
cloudlinux
cloudlinux
microcode_ctl: Fix of CVE-2023-23583
2023-12-12 22:43:53
cloudfoundry
cloudfoundry
USN-6485-1: Intel Microcode vulnerability | Cloud Foundry
2023-12-04 00:00:00
debian
debian
[SECURITY] [DLA 3690-1] intel-microcode security update
2023-12-16 17:32:51
[SECURITY] [DSA 5563-1] intel-microcode security update
2023-11-23 15:46:30
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4500-1)
2023-11-22 00:00:00
Fedora: Security Advisory for microcode_ctl (FEDORA-2023-40e71fe5b9)
2023-11-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4442-1)
2023-11-15 00:00:00
osv
osv
intel-microcode - security update
2023-11-23 00:00:00
intel-microcode vulnerability
2023-11-17 00:12:04
CVE-2023-23583
2023-11-14 19:15:18
fedora
fedora
[SECURITY] Fedora 38 Update: microcode_ctl-2.1-55.2.fc38
2023-11-17 01:20:23
[SECURITY] Fedora 37 Update: microcode_ctl-2.1-53.3.fc37
2023-11-23 01:11:53
[SECURITY] Fedora 39 Update: microcode_ctl-2.1-58.fc39
2023-11-17 01:39:28
intel
intel
2023.4 IPU - Intelยฎ Processor Advisory
2023-11-14 00:00:00
rocky
rocky
microcode_ctl bug fix and enhancement update
2023-11-28 22:42:52
microcode_ctl bug fix and enhancement update
2024-05-10 14:32:36
ubuntucve
ubuntucve
CVE-2023-23583
2023-11-14 00:00:00
virtuozzo
virtuozzo
Virtuozzo Hybrid Infrastructure 5.4 Update 4 Hotfix 3 (5.4.4-139)
2023-11-21 00:00:00
ubuntu
ubuntu
Intel Microcode vulnerability
2023-11-17 00:00:00
alpinelinux
alpinelinux
CVE-2023-23583
2023-11-14 19:15:18
debiancve
debiancve
CVE-2023-23583
2023-11-14 19:15:18
hp
hp
Intel 2023.4 IPU Out-of-Band (OOB) Processor Security Update
2023-12-11 00:00:00
redos
redos
ROS-20240902-03
2024-09-02 00:00:00
veracode
veracode
Privilege Escalation
2023-11-28 03:55:56
nvd
nvd
CVE-2023-23583
2023-11-14 19:15:18
citrix
citrix
Citrix Hypervisor Security Bulletin for CVE-2023-23583 and CVE-2023-46835
2023-11-15 14:46:09
thn
thn
talosblog
talosblog
We all just need to agree that ad blockers are good
2023-11-16 19:00:39
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0
Percentile
5.1%
Related for UBUNTU_USN-6485-1.NASL