rpm package
opensuse/ucode-intel&distro=openSUSE Leap Micro 5.4
pkg:rpm/opensuse/ucode-intel&distro=openSUSE%20Leap%20Micro%205.4
Vulnerabilities (13)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-46103 | Med | 4.7 | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated user to potentially enable denial of service via local access. | |
| CVE-2023-45733 | Low | 2.8 | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclosure via local access. | |
| CVE-2023-47855 | — | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. | ||
| CVE-2023-45745 | — | < 20240514-150200.41.1 | 20240514-150200.41.1 | May 16, 2024 | Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. | ||
| CVE-2023-43490 | Med | 5.3 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access. | |
| CVE-2023-39368 | Med | 6.5 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access. | |
| CVE-2023-38575 | Med | 5.5 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | |
| CVE-2023-28746 | Med | 6.5 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | |
| CVE-2023-22655 | Med | 6.1 | < 20240312-150200.38.1 | 20240312-150200.38.1 | Mar 14, 2024 | Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access. | |
| CVE-2023-23583 | — | < 20231113-150200.32.1 | 20231113-150200.32.1 | Nov 14, 2023 | Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access. | ||
| CVE-2022-41804 | — | < 20230808-150200.27.1 | 20230808-150200.27.1 | Aug 11, 2023 | Unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | ||
| CVE-2023-23908 | — | < 20230808-150200.27.1 | 20230808-150200.27.1 | Aug 11, 2023 | Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure via local access. | ||
| CVE-2022-40982 | — | < 20230808-150200.27.1 | 20230808-150200.27.1 | Aug 11, 2023 | Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. |
- affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated user to potentially enable denial of service via local access.
- affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclosure via local access.
- CVE-2023-47855May 16, 2024affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2023-45745May 16, 2024affected < 20240514-150200.41.1fixed 20240514-150200.41.1
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- affected < 20240312-150200.38.1fixed 20240312-150200.38.1
Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2023-23583Nov 14, 2023affected < 20231113-150200.32.1fixed 20231113-150200.32.1
Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access.
- CVE-2022-41804Aug 11, 2023affected < 20230808-150200.27.1fixed 20230808-150200.27.1
Unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2023-23908Aug 11, 2023affected < 20230808-150200.27.1fixed 20230808-150200.27.1
Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2022-40982Aug 11, 2023affected < 20230808-150200.27.1fixed 20230808-150200.27.1
Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.