rpm package
suse/ucode-intel&distro=SUSE OpenStack Cloud 9
pkg:rpm/suse/ucode-intel&distro=SUSE%20OpenStack%20Cloud%209
Vulnerabilities (17)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-38090 | — | < 20230214-13.104.1 | 20230214-13.104.1 | Feb 16, 2023 | Improper isolation of shared resources in some Intel(R) Processors when using Intel(R) Software Guard Extensions may allow a privileged user to potentially enable information disclosure via local access. | ||
| CVE-2022-33196 | — | < 20230214-13.104.1 | 20230214-13.104.1 | Feb 16, 2023 | Incorrect default permissions in some memory controller configurations for some Intel(R) Xeon(R) Processors when using Intel(R) Software Guard Extensions which may allow a privileged user to potentially enable escalation of privilege via local access. | ||
| CVE-2022-33972 | — | < 20230512-13.107.1 | 20230512-13.107.1 | Feb 16, 2023 | Incorrect calculation in microcode keying mechanism for some 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable information disclosure via local access. | ||
| CVE-2022-21216 | — | < 20230214-13.104.1 | 20230214-13.104.1 | Feb 16, 2023 | Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access. | ||
| CVE-2022-21233 | — | < 20220809-13.101.1 | 20220809-13.101.1 | Aug 18, 2022 | Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. | ||
| CVE-2022-21151 | — | < 20220510-13.97.1 | 20220510-13.97.1 | May 12, 2022 | Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2021-33120 | — | < 20220207-13.93.1 | 20220207-13.93.1 | Feb 9, 2022 | Out of bounds read under complex microarchitectural condition in memory subsystem for some Intel Atom(R) Processors may allow authenticated user to potentially enable information disclosure or cause denial of service via network access. | ||
| CVE-2021-0127 | — | < 20220207-13.93.1 | 20220207-13.93.1 | Feb 9, 2022 | Insufficient control flow management in some Intel(R) Processors may allow an authenticated user to potentially enable a denial of service via local access. | ||
| CVE-2021-0145 | — | < 20220207-13.93.1 | 20220207-13.93.1 | Feb 9, 2022 | Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2021-0146 | — | < 20220207-13.93.1 | 20220207-13.93.1 | Nov 17, 2021 | Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access. | ||
| CVE-2020-24489 | — | < 20210525-13.90.1 | 20210525-13.90.1 | Jun 9, 2021 | Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2020-24513 | — | < 20210525-13.90.1 | 20210525-13.90.1 | Jun 9, 2021 | Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2020-24512 | — | < 20210525-13.90.1 | 20210525-13.90.1 | Jun 9, 2021 | Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2020-24511 | — | < 20210525-13.90.1 | 20210525-13.90.1 | Jun 9, 2021 | Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2020-8695 | — | < 20201027-13.76.1 | 20201027-13.76.1 | Nov 12, 2020 | Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. | ||
| CVE-2020-8696 | — | < 20201118-13.81.1 | 20201118-13.81.1 | Nov 12, 2020 | Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2020-8698 | — | < 20201027-13.76.1 | 20201027-13.76.1 | Nov 12, 2020 | Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. |
- CVE-2022-38090Feb 16, 2023affected < 20230214-13.104.1fixed 20230214-13.104.1
Improper isolation of shared resources in some Intel(R) Processors when using Intel(R) Software Guard Extensions may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2022-33196Feb 16, 2023affected < 20230214-13.104.1fixed 20230214-13.104.1
Incorrect default permissions in some memory controller configurations for some Intel(R) Xeon(R) Processors when using Intel(R) Software Guard Extensions which may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2022-33972Feb 16, 2023affected < 20230512-13.107.1fixed 20230512-13.107.1
Incorrect calculation in microcode keying mechanism for some 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2022-21216Feb 16, 2023affected < 20230214-13.104.1fixed 20230214-13.104.1
Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access.
- CVE-2022-21233Aug 18, 2022affected < 20220809-13.101.1fixed 20220809-13.101.1
Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2022-21151May 12, 2022affected < 20220510-13.97.1fixed 20220510-13.97.1
Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2021-33120Feb 9, 2022affected < 20220207-13.93.1fixed 20220207-13.93.1
Out of bounds read under complex microarchitectural condition in memory subsystem for some Intel Atom(R) Processors may allow authenticated user to potentially enable information disclosure or cause denial of service via network access.
- CVE-2021-0127Feb 9, 2022affected < 20220207-13.93.1fixed 20220207-13.93.1
Insufficient control flow management in some Intel(R) Processors may allow an authenticated user to potentially enable a denial of service via local access.
- CVE-2021-0145Feb 9, 2022affected < 20220207-13.93.1fixed 20220207-13.93.1
Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2021-0146Nov 17, 2021affected < 20220207-13.93.1fixed 20220207-13.93.1
Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
- CVE-2020-24489Jun 9, 2021affected < 20210525-13.90.1fixed 20210525-13.90.1
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2020-24513Jun 9, 2021affected < 20210525-13.90.1fixed 20210525-13.90.1
Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2020-24512Jun 9, 2021affected < 20210525-13.90.1fixed 20210525-13.90.1
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2020-24511Jun 9, 2021affected < 20210525-13.90.1fixed 20210525-13.90.1
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2020-8695Nov 12, 2020affected < 20201027-13.76.1fixed 20201027-13.76.1
Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2020-8696Nov 12, 2020affected < 20201118-13.81.1fixed 20201118-13.81.1
Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2020-8698Nov 12, 2020affected < 20201027-13.76.1fixed 20201027-13.76.1
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.