Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2021.2940
microcode_ctl security, bug fix and enhancement update
1 September 2021
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: microcode_ctl
Publisher: Red Hat
Operating System: Red Hat
Impact/Access: Execute Arbitrary Code/Commands -- Existing Account
Increased Privileges -- Existing Account
Access Confidential Data -- Existing Account
Reduced Security -- Existing Account
Resolution: Patch/Upgrade
CVE Names: CVE-2020-24512 CVE-2020-24511 CVE-2020-24489
CVE-2020-8698 CVE-2020-8696 CVE-2020-8695
CVE-2020-0549 CVE-2020-0548 CVE-2020-0543
Reference: ESB-2021.2905
ESB-2021.2721
ESB-2021.2673
Original Bulletin:
https://access.redhat.com/errata/RHSA-2021:3317
https://access.redhat.com/errata/RHSA-2021:3322
https://access.redhat.com/errata/RHSA-2021:3323
Comment: This bulletin contains three (3) Red Hat security advisories.
- --------------------------BEGIN INCLUDED TEXT--------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Important: microcode_ctl security, bug fix and enhancement update
Advisory ID: RHSA-2021:3317-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:3317
Issue date: 2021-08-31
CVE Names: CVE-2020-0543 CVE-2020-0548 CVE-2020-0549
CVE-2020-8695 CVE-2020-8696 CVE-2020-8698
CVE-2020-24489 CVE-2020-24511 CVE-2020-24512
=====================================================================
1. Summary:
An update for microcode_ctl is now available for Red Hat Enterprise Linux
7.6 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Server AUS (v. 7.6) - x86_64
Red Hat Enterprise Linux Server E4S (v. 7.6) - x86_64
Red Hat Enterprise Linux Server TUS (v. 7.6) - x86_64
3. Description:
* hw: Vector Register Data Sampling (CVE-2020-0548)
* hw: L1D Cache Eviction Sampling (CVE-2020-0549)
* hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543)
* hw: Information disclosure issue in Intel SGX via RAPL interface
(CVE-2020-8695)
* hw: Vector Register Leakage-Active (CVE-2020-8696)
* hw: Fast forward store predictor (CVE-2020-8698)
* hw: vt-d related privilege escalation (CVE-2020-24489)
* hw: improper isolation of shared resources in some Intel Processors
(CVE-2020-24511)
* hw: observable timing discrepancy in some Intel Processors
(CVE-2020-24512)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
4. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
5. Bugs fixed (https://bugzilla.redhat.com/):
1788786 - CVE-2020-0548 hw: Vector Register Data Sampling
1788788 - CVE-2020-0549 hw: L1D Cache Eviction Sampling
1827165 - CVE-2020-0543 hw: Special Register Buffer Data Sampling (SRBDS)
1828583 - CVE-2020-8695 hw: Information disclosure issue in Intel SGX via RAPL interface
1890355 - CVE-2020-8696 hw: Vector Register Leakage-Active
1890356 - CVE-2020-8698 hw: Fast forward store predictor
1962650 - CVE-2020-24489 hw: vt-d related privilege escalation
1962702 - CVE-2020-24511 hw: improper isolation of shared resources in some Intel Processors
1962722 - CVE-2020-24512 hw: observable timing discrepancy in some Intel Processors
1972333 - [rhel-7.6.z] Re-enable 06-5e-03 (SKL-H/S, CPUID 0x506e3) latest microcode updates
6. Package List:
Red Hat Enterprise Linux Server AUS (v. 7.6):
Source:
microcode_ctl-2.1-47.23.el7_6.src.rpm
x86_64:
microcode_ctl-2.1-47.23.el7_6.x86_64.rpm
microcode_ctl-debuginfo-2.1-47.23.el7_6.x86_64.rpm
Red Hat Enterprise Linux Server E4S (v. 7.6):
Source:
microcode_ctl-2.1-47.23.el7_6.src.rpm
x86_64:
microcode_ctl-2.1-47.23.el7_6.x86_64.rpm
microcode_ctl-debuginfo-2.1-47.23.el7_6.x86_64.rpm
Red Hat Enterprise Linux Server TUS (v. 7.6):
Source:
microcode_ctl-2.1-47.23.el7_6.src.rpm
x86_64:
microcode_ctl-2.1-47.23.el7_6.x86_64.rpm
microcode_ctl-debuginfo-2.1-47.23.el7_6.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2020-0543
https://access.redhat.com/security/cve/CVE-2020-0548
https://access.redhat.com/security/cve/CVE-2020-0549
https://access.redhat.com/security/cve/CVE-2020-8695
https://access.redhat.com/security/cve/CVE-2020-8696
https://access.redhat.com/security/cve/CVE-2020-8698
https://access.redhat.com/security/cve/CVE-2020-24489
https://access.redhat.com/security/cve/CVE-2020-24511
https://access.redhat.com/security/cve/CVE-2020-24512
https://access.redhat.com/security/updates/classification/#important
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2021 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=dx7d
- -----END PGP SIGNATURE-----
- --------------------------------------------------------------------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Important: microcode_ctl security, bug fix and enhancement update
Advisory ID: RHSA-2021:3322-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:3322
Issue date: 2021-08-31
CVE Names: CVE-2020-0543 CVE-2020-0548 CVE-2020-0549
CVE-2020-8695 CVE-2020-8696 CVE-2020-8698
CVE-2020-24489 CVE-2020-24511 CVE-2020-24512
=====================================================================
1. Summary:
An update for microcode_ctl is now available for Red Hat Enterprise Linux
7.3 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Server AUS (v. 7.3) - x86_64
3. Description:
The microcode_ctl packages provide microcode updates for Intel.
Security Fix(es):
* hw: Vector Register Data Sampling (CVE-2020-0548)
* hw: L1D Cache Eviction Sampling (CVE-2020-0549)
* hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543)
* hw: Information disclosure issue in Intel SGX via RAPL interface
(CVE-2020-8695)
* hw: Vector Register Leakage-Active (CVE-2020-8696)
* hw: Fast forward store predictor (CVE-2020-8698)
* hw: vt-d related privilege escalation (CVE-2020-24489)
* hw: improper isolation of shared resources in some Intel Processors
(CVE-2020-24511)
* hw: observable timing discrepancy in some Intel Processors
(CVE-2020-24512)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
4. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
5. Bugs fixed (https://bugzilla.redhat.com/):
1788786 - CVE-2020-0548 hw: Vector Register Data Sampling
1788788 - CVE-2020-0549 hw: L1D Cache Eviction Sampling
1827165 - CVE-2020-0543 hw: Special Register Buffer Data Sampling (SRBDS)
1828583 - CVE-2020-8695 hw: Information disclosure issue in Intel SGX via RAPL interface
1890355 - CVE-2020-8696 hw: Vector Register Leakage-Active
1890356 - CVE-2020-8698 hw: Fast forward store predictor
1962650 - CVE-2020-24489 hw: vt-d related privilege escalation
1962702 - CVE-2020-24511 hw: improper isolation of shared resources in some Intel Processors
1962722 - CVE-2020-24512 hw: observable timing discrepancy in some Intel Processors
1972335 - [rhel-7.3.z] Re-enable 06-5e-03 (SKL-H/S, CPUID 0x506e3) latest microcode updates
6. Package List:
Red Hat Enterprise Linux Server AUS (v. 7.3):
Source:
microcode_ctl-2.1-16.42.el7_3.src.rpm
x86_64:
microcode_ctl-2.1-16.42.el7_3.x86_64.rpm
microcode_ctl-debuginfo-2.1-16.42.el7_3.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2020-0543
https://access.redhat.com/security/cve/CVE-2020-0548
https://access.redhat.com/security/cve/CVE-2020-0549
https://access.redhat.com/security/cve/CVE-2020-8695
https://access.redhat.com/security/cve/CVE-2020-8696
https://access.redhat.com/security/cve/CVE-2020-8698
https://access.redhat.com/security/cve/CVE-2020-24489
https://access.redhat.com/security/cve/CVE-2020-24511
https://access.redhat.com/security/cve/CVE-2020-24512
https://access.redhat.com/security/updates/classification/#important
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2021 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=U2Lp
- -----END PGP SIGNATURE-----
- --------------------------------------------------------------------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Important: microcode_ctl security, bug fix and enhancement update
Advisory ID: RHSA-2021:3323-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:3323
Issue date: 2021-08-31
CVE Names: CVE-2020-0543 CVE-2020-0548 CVE-2020-0549
CVE-2020-8695 CVE-2020-8696 CVE-2020-8698
CVE-2020-24489 CVE-2020-24511 CVE-2020-24512
=====================================================================
1. Summary:
An update for microcode_ctl is now available for Red Hat Enterprise Linux
7.2 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Server AUS (v. 7.2) - x86_64
3. Description:
The microcode_ctl packages provide microcode updates for Intel.
Security Fix(es):
* hw: Vector Register Data Sampling (CVE-2020-0548)
* hw: L1D Cache Eviction Sampling (CVE-2020-0549)
* hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543)
* hw: Information disclosure issue in Intel SGX via RAPL interface
(CVE-2020-8695)
* hw: Vector Register Leakage-Active (CVE-2020-8696)
* hw: Fast forward store predictor (CVE-2020-8698)
* hw: vt-d related privilege escalation (CVE-2020-24489)
* hw: improper isolation of shared resources in some Intel Processors
(CVE-2020-24511)
* hw: observable timing discrepancy in some Intel Processors
(CVE-2020-24512)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
4. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
5. Bugs fixed (https://bugzilla.redhat.com/):
1788786 - CVE-2020-0548 hw: Vector Register Data Sampling
1788788 - CVE-2020-0549 hw: L1D Cache Eviction Sampling
1827165 - CVE-2020-0543 hw: Special Register Buffer Data Sampling (SRBDS)
1828583 - CVE-2020-8695 hw: Information disclosure issue in Intel SGX via RAPL interface
1890355 - CVE-2020-8696 hw: Vector Register Leakage-Active
1890356 - CVE-2020-8698 hw: Fast forward store predictor
1962650 - CVE-2020-24489 hw: vt-d related privilege escalation
1962702 - CVE-2020-24511 hw: improper isolation of shared resources in some Intel Processors
1962722 - CVE-2020-24512 hw: observable timing discrepancy in some Intel Processors
1972336 - [rhel-7.2.z] Re-enable 06-5e-03 (SKL-H/S, CPUID 0x506e3) latest microcode updates
6. Package List:
Red Hat Enterprise Linux Server AUS (v. 7.2):
Source:
microcode_ctl-2.1-12.39.el7_2.src.rpm
x86_64:
microcode_ctl-2.1-12.39.el7_2.x86_64.rpm
microcode_ctl-debuginfo-2.1-12.39.el7_2.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2020-0543
https://access.redhat.com/security/cve/CVE-2020-0548
https://access.redhat.com/security/cve/CVE-2020-0549
https://access.redhat.com/security/cve/CVE-2020-8695
https://access.redhat.com/security/cve/CVE-2020-8696
https://access.redhat.com/security/cve/CVE-2020-8698
https://access.redhat.com/security/cve/CVE-2020-24489
https://access.redhat.com/security/cve/CVE-2020-24511
https://access.redhat.com/security/cve/CVE-2020-24512
https://access.redhat.com/security/updates/classification/#important
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2021 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=M4kH
- -----END PGP SIGNATURE-----
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
https://www.auscert.org.au/bulletins/
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=ZS0x
-----END PGP SIGNATURE-----