SUSE-SU-2019:1296-1: important: Security update for ucode-intel

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Tue May 21 04:14:48 MDT 2019


   SUSE Security Update: Security update for ucode-intel
______________________________________________________________________________

Announcement ID:    SUSE-SU-2019:1296-1
Rating:             important
References:         #1111331 
Cross-References:   CVE-2018-12126 CVE-2018-12127 CVE-2018-12130
                    CVE-2019-11091
Affected Products:
                    SUSE OpenStack Cloud 7
                    SUSE Linux Enterprise Server for SAP 12-SP2
                    SUSE Linux Enterprise Server for SAP 12-SP1
                    SUSE Linux Enterprise Server 12-SP4
                    SUSE Linux Enterprise Server 12-SP3
                    SUSE Linux Enterprise Server 12-SP2-LTSS
                    SUSE Linux Enterprise Server 12-SP2-BCL
                    SUSE Linux Enterprise Server 12-SP1-LTSS
                    SUSE Linux Enterprise Server 12-LTSS
                    SUSE Linux Enterprise Desktop 12-SP4
                    SUSE Linux Enterprise Desktop 12-SP3
                    SUSE Enterprise Storage 4
                    SUSE CaaS Platform 3.0
______________________________________________________________________________

   An update that fixes four vulnerabilities is now available.

Description:

   This update for ucode-intel fixes the following issues:

   ucode-intel was updated to official QSR 2019.1 microcode release
   (bsc#1111331 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091)

   ---- new platforms ---------------------------------------- VLV
    C0       6-37-8/02           00000838 Atom Z series VLV          C0
    6-37-8/0C           00000838 Celeron N2xxx, Pentium N35xx VLV
    D0       6-37-9/0F           0000090c Atom E38xx CHV          C0
    6-4c-3/01           00000368 Atom X series CHV          D0
    6-4c-4/01           00000411 Atom X series

   Readded Broadwell CPU ucode that was missing in last update:

   BDX-ML       B0/M0/R0 6-4f-1/ef 0b00002e->00000036 Xeon E5/E7 v4; Core
   i7-69xx/68xx


Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE OpenStack Cloud 7:

      zypper in -t patch SUSE-OpenStack-Cloud-7-2019-1296=1

   - SUSE Linux Enterprise Server for SAP 12-SP2:

      zypper in -t patch SUSE-SLE-SAP-12-SP2-2019-1296=1

   - SUSE Linux Enterprise Server for SAP 12-SP1:

      zypper in -t patch SUSE-SLE-SAP-12-SP1-2019-1296=1

   - SUSE Linux Enterprise Server 12-SP4:

      zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-1296=1

   - SUSE Linux Enterprise Server 12-SP3:

      zypper in -t patch SUSE-SLE-SERVER-12-SP3-2019-1296=1

   - SUSE Linux Enterprise Server 12-SP2-LTSS:

      zypper in -t patch SUSE-SLE-SERVER-12-SP2-2019-1296=1

   - SUSE Linux Enterprise Server 12-SP2-BCL:

      zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2019-1296=1

   - SUSE Linux Enterprise Server 12-SP1-LTSS:

      zypper in -t patch SUSE-SLE-SERVER-12-SP1-2019-1296=1

   - SUSE Linux Enterprise Server 12-LTSS:

      zypper in -t patch SUSE-SLE-SERVER-12-2019-1296=1

   - SUSE Linux Enterprise Desktop 12-SP4:

      zypper in -t patch SUSE-SLE-DESKTOP-12-SP4-2019-1296=1

   - SUSE Linux Enterprise Desktop 12-SP3:

      zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2019-1296=1

   - SUSE Enterprise Storage 4:

      zypper in -t patch SUSE-Storage-4-2019-1296=1

   - SUSE CaaS Platform 3.0:

      To install this update, use the SUSE CaaS Platform Velum dashboard.
      It will inform you if it detects new updates and let you then trigger
      updating of the complete cluster in a controlled way.



Package List:

   - SUSE OpenStack Cloud 7 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server for SAP 12-SP2 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server 12-SP4 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server 12-SP3 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server 12-SP2-LTSS (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server 12-SP2-BCL (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Server 12-LTSS (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Desktop 12-SP4 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Linux Enterprise Desktop 12-SP3 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE Enterprise Storage 4 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1

   - SUSE CaaS Platform 3.0 (x86_64):

      ucode-intel-20190514-13.44.1
      ucode-intel-debuginfo-20190514-13.44.1
      ucode-intel-debugsource-20190514-13.44.1


References:

   https://www.suse.com/security/cve/CVE-2018-12126.html
   https://www.suse.com/security/cve/CVE-2018-12127.html
   https://www.suse.com/security/cve/CVE-2018-12130.html
   https://www.suse.com/security/cve/CVE-2019-11091.html
   https://bugzilla.suse.com/1111331



More information about the sle-security-updates mailing list