VYPR

rpm package

suse/ucode-intel&distro=SUSE Linux Enterprise Server 12 SP1-LTSS

pkg:rpm/suse/ucode-intel&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS

Vulnerabilities (10)

  • CVE-2019-11135MedNov 14, 2019
    affected < 20191112-13.53.1fixed 20191112-13.53.1

    TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.

  • CVE-2019-11139Nov 14, 2019
    affected < 20191112-13.53.1fixed 20191112-13.53.1

    Improper conditions check in the voltage modulation interface for some Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2019-11091MedMay 30, 2019
    affected < 20190507-13.41.1fixed 20190507-13.41.1

    Microarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products c

  • CVE-2018-12130MedMay 30, 2019
    affected < 20190507-13.41.1fixed 20190507-13.41.1

    Microarchitectural Fill Buffer Data Sampling (MFBDS): Fill buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found h

  • CVE-2018-12127MedMay 30, 2019
    affected < 20190507-13.41.1fixed 20190507-13.41.1

    Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here:

  • CVE-2018-12126MedMay 30, 2019
    affected < 20190507-13.41.1fixed 20190507-13.41.1

    Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found

  • CVE-2018-3646MedAug 14, 2018
    affected < 20180807-13.29.1fixed 20180807-13.29.1

    Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis

  • CVE-2018-3640MedMay 22, 2018
    affected < 20180703-13.25.1fixed 20180703-13.25.1

    Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Var

  • CVE-2018-3639MedMay 22, 2018
    affected < 20180703-13.25.1fixed 20180703-13.25.1

    Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka

  • CVE-2017-5715MedJan 4, 2018
    affected < 20180312-13.17.1fixed 20180312-13.17.1

    Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.