SUSE-SU-2025:1032-1: important: Security update for microcode_ctl
SLE-SECURITY-UPDATES
null at suse.de
Wed Mar 26 16:30:16 UTC 2025
# Security update for microcode_ctl
Announcement ID: SUSE-SU-2025:1032-1
Release Date: 2025-03-26T14:22:25Z
Rating: important
References:
* bsc#1206418
* bsc#1211382
* bsc#1214099
* bsc#1215278
* bsc#1221323
* bsc#1224277
* bsc#1229129
* bsc#1230400
* bsc#1233313
* bsc#1237096
Cross-References:
* CVE-2022-40982
* CVE-2022-41804
* CVE-2023-22655
* CVE-2023-23583
* CVE-2023-23908
* CVE-2023-28746
* CVE-2023-38575
* CVE-2023-39368
* CVE-2023-42667
* CVE-2023-43490
* CVE-2023-45733
* CVE-2023-45745
* CVE-2023-46103
* CVE-2023-47855
* CVE-2023-49141
* CVE-2024-21820
* CVE-2024-21853
* CVE-2024-23918
* CVE-2024-23984
* CVE-2024-24853
* CVE-2024-24968
* CVE-2024-24980
* CVE-2024-25939
* CVE-2024-31068
* CVE-2024-36293
* CVE-2024-37020
* CVE-2024-39355
CVSS scores:
* CVE-2022-40982 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2022-40982 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
* CVE-2022-41804 ( SUSE ): 7.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H
* CVE-2022-41804 ( NVD ): 7.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H
* CVE-2023-22655 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N
* CVE-2023-23583 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2023-23583 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2023-23583 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2023-23908 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2023-23908 ( NVD ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2023-28746 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
* CVE-2023-38575 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2023-39368 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2023-42667 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2023-42667 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2023-43490 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2023-45733 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N
* CVE-2023-45745 ( SUSE ): 7.9 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
* CVE-2023-46103 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-47855 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
* CVE-2023-49141 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2023-49141 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2023-49141 ( NVD ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2023-49141 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2024-21820 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N
* CVE-2024-21820 ( SUSE ): 7.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N
* CVE-2024-21820 ( NVD ): 8.5
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-21820 ( NVD ): 7.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N
* CVE-2024-21853 ( SUSE ): 5.7
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-21853 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-21853 ( NVD ): 5.7
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-21853 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-23918 ( SUSE ): 8.8
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2024-23918 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2024-23918 ( NVD ): 8.8
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-23918 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2024-23984 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N
* CVE-2024-23984 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2024-23984 ( NVD ): 6.8
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-23984 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2024-24853 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2024-24853 ( SUSE ): 7.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
* CVE-2024-24968 ( SUSE ): 5.6
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-24968 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-24968 ( NVD ): 5.6
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-24968 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-24980 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:L/SI:H/SA:N
* CVE-2024-24980 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N
* CVE-2024-25939 ( SUSE ): 6.7
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-25939 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-31068 ( SUSE ): 5.6
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-31068 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-31068 ( NVD ): 5.6
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-31068 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-36293 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-36293 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-36293 ( NVD ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-36293 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-37020 ( SUSE ): 4.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2024-37020 ( SUSE ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L
* CVE-2024-37020 ( NVD ): 4.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-37020 ( NVD ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L
* CVE-2024-37020 ( NVD ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L
* CVE-2024-39355 ( SUSE ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-39355 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-39355 ( NVD ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2024-39355 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Affected Products:
* SUSE Linux Enterprise Server 11 SP4
* SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE
An update that solves 27 vulnerabilities can now be installed.
## Description:
This update for microcode_ctl fixes the following issues:
* CVE-2024-31068: Improper Finite State Machines (FSMs) in Hardware Logic for
some Intel Processors may allow privileged user to potentially enable denial
of service via local access. (bsc#1237096)
* CVE-2024-36293: A potential security vulnerability in some Intel Software
Guard Extensions (Intel SGX) Platforms may allow denial of service. Intel is
releasing microcode updates to mitigate this potential vulnerability.
(bsc#1237096)
* CVE-2024-39355: A potential security vulnerability in some 13th and 14th
Generation Intel Core Processors may allow denial of service. Intel is
releasing microcode and UEFI reference code updates to mitigate this
potential vulnerability. (bsc#1237096)
* CVE-2024-37020: A potential security vulnerability in the Intel Data
Streaming Accelerator (Intel DSA) for some Intel Xeon Processors may allow
denial of service. Intel is releasing software updates to mitigate this
potential vulnerability. (bsc#1237096)
* CVE-2024-21853: Faulty finite state machines (FSMs) in the hardware logic in
some 4th and 5th Generation Intel Xeon Processors may allow an authorized
user to potentially enable denial of service via local access. (bsc#1233313)
* CVE-2024-23918: Improper conditions check in some Intel Xeon processor
memory controller configurations when using Intel SGX may allow a privileged
user to potentially enable escalation of privilege via local access.
(bsc#1233313)
* CVE-2024-21820: Incorrect default permissions in some Intel Xeon processor
memory controller configurations when using Intel SGX may allow a privileged
user to potentially enable escalation of privilege via local access.
(bsc#1233313)
* CVE-2024-24968: Improper finite state machines (FSMs) in hardware logic in
some Intel Processors may allow an privileged user to potentially enable a
denial of service via local access. (bsc#1230400)
* CVE-2024-23984: Observable discrepancy in RAPL interface for some Intel
Processors may allow a privileged user to potentially enable information
disclosure via local access. (bsc#1230400)
* CVE-2024-24853: Incorrect behavior order in transition between executive
monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow
a privileged user to potentially enable escalation of privilege via local
access. (bsc#1229129)
* CVE-2024-25939: Mirrored regions with different values in 3rd Generation
Intel(R) Xeon(R) Scalable Processors may allow a privileged user to
potentially enable denial of service via local access. (bsc#1229129)
* CVE-2024-24980: Protection mechanism failure in some 3rd, 4th, and 5th
Generation Intel(R) Xeon(R) Processors may allow a privileged user to
potentially enable escalation of privilege via local access. (bsc#1229129)
* CVE-2023-42667: Improper isolation in the Intel(R) Core(TM) Ultra Processor
stream cache mechanism may allow an authenticated user to potentially enable
escalation of privilege via local access. (bsc#1229129)
* CVE-2023-49141: Improper isolation in some Intel(R) Processors stream cache
mechanism may allow an authenticated user to potentially enable escalation
of privilege via local access. (bsc#1229129)
* CVE-2023-45733: Hardware logic contains race conditions in some Intel(R)
Processors may allow an authenticated user to potentially enable partial
information disclosure via local access. (bsc#1224277)
* CVE-2023-46103: Sequence of processor instructions leads to unexpected
behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated
user to potentially enable denial of service via local access. (bsc#1224277)
* CVE-2023-45745: Improper input validation in some Intel(R) TDX module
software before version 1.5.05.46.698 may allow a privileged user to
potentially enable escalation of privilege via local access. (bsc#1224277)
* CVE-2023-47855: Improper input validation in some Intel(R) TDX module
software before version 1.5.05.46.698 may allow a privileged user to
potentially enable escalation of privilege via local access. (bsc#1224277)
* CVE-2023-39368: Protection mechanism failure of bus lock regulator for some
Intel Processors may allow an unauthenticated user to potentially enable
denial of service via network access. (bsc#1221323)
* CVE-2023-38575: Non-transparent sharing of return predictor targets between
contexts in some Intel Processors may allow an authorized user to
potentially enable information disclosure via local access. (bsc#1221323)
* CVE-2023-28746: Information exposure through microarchitectural state after
transient execution from some register files for some Intel Atom Processors
may allow an authenticated user to potentially enable information disclosure
via local access. (bsc#1221323)
* CVE-2023-22655: Protection mechanism failure in some 3rd and 4th Generation
Intel Xeon Processors when using Intel SGX or Intel TDX may allow a
privileged user to potentially enable escalation of privilege via local
access. (bsc#1221323)
* CVE-2023-43490: Incorrect calculation in microcode keying mechanism for some
Intel Xeon D Processors with Intel SGX may allow a privileged user to
potentially enable information disclosure via local access. (bsc#1221323)
* CVE-2023-23583: Fixed potential CPU deadlocks or privilege escalation
(bsc#1215278)
* CVE-2022-40982: Information exposure through microarchitectural state after
transient execution in certain vector execution units for some Intel(R)
Processors may allow an authenticated user to potentially enable information
disclosure via local access. (bsc#1206418)
* CVE-2023-23908: Improper access control in some 3rd Generation Intel(R)
Xeon(R) Scalable processors may allow a privileged user to potentially
enable information disclosure via local access.
* CVE-2022-41804: Unauthorized error injection in Intel(R) SGX or Intel(R) TDX
for some Intel(R) Xeon(R) Processors may allow a privileged user to
potentially enable escalation of privilege via local access.
Other fixes:
* Intel CPU Microcode was updated to the 20250211 release (bsc#1237096)
* Security updates for INTEL-SA-01166
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01166.html
* Security updates for INTEL-SA-01213
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01213.html
* Security updates for INTEL-SA-01139
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01139.html
* Security updates for INTEL-SA-01228
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01228.html
* Security updates for INTEL-SA-01194
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01194.html
* Update for functional issues. Refer to Intel Core Ultra Processor
https://cdrdv2.intel.com/v1/dl/getContent/792254 for details.
* Update for functional issues. Refer to 13th/14th Generation Intel Core
Processor Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/740518 for details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family https://cdrdv2.intel.com/v1/dl/getContent/682436 for details.
* Update for functional issues. Refer to 11th Gen Intel Core Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/631123 for
details.
* Update for functional issues. Refer to 8th and 9th Generation Intel Core
Processor Family Spec Update
https://cdrdv2.intel.com/v1/dl/getContent/337346 for details.
* Update for functional issues. Refer to 5th Gen Intel Xeon Scalable
Processors Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/793902 for details.
* Update for functional issues. Refer to 4th Gen Intel Xeon Scalable
Processors Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/772415 for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Processor
Scalable Family Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/637780 for details.
* Update for functional issues. Refer to Intel Xeon D-2700 Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/714071 for
details.
* Update for functional issues. Refer to Intel Xeon E-2300 Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/709192 for
details.
* Update for functional issues. Refer to Intel Xeon 6700-Series Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/820922 for
details.
* Update for functional issues. Refer to Intel Processors and Intel Core i3
N-Series https://cdrdv2.intel.com/v1/dl/getContent/764616 for details
* Intel CPU Microcode was updated to the 20241112 release (bsc#1233313)
* Security updates for INTEL-SA-01101.
* Security updates for INTEL-SA-01079.
* Security updates for INTEL-SA-01079.
* Updated security updates for INTEL-SA-01097.
* Updated security updates for INTEL-SA-01103.
* Update for functional issues. Refer to Intel Core Ultra Processor for
details.
* Update for functional issues. Refer to 14th/13th Generation Intel Core
Processor Specification Update for details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family for details.
* Update for functional issues. Refer to 5th Gen Intel Xeon Scalable
Processors Specification Update for details.
* Update for functional issues. Refer to 4th Gen Intel Xeon Scalable
Processors Specification Update for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Processor
Scalable Family Specification Update for details.
* Update for functional issues. Refer to Intel Xeon D-2700 Processor
Specification Update for details.
* Update for functional issues. Refer to Intel Xeon D-1700 and D-1800
Processor Family Specification Update for details
* Intel CPU Microcode was updated to the 20241029 release (bsc#1230400)
* Update for functional issues. Refer to 14th/13th Generation Intel Core
Processor Specification Update for details.
* Intel CPU Microcode was updated to the 20240910 release (bsc#1230400)
* Security updates for INTEL-SA-01103
* Security updates for INTEL-SA-01097
* Update for functional issues. Refer to Intel Core Ultra Processor for
details.
* Update for functional issues. Refer to 13th Generation Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family for details.
* Update for functional issues. Refer to Intel Processors and Intel Core i3
N-Series for details.
* Intel CPU Microcode was updated to the 20240813 release (bsc#1229129)
* Security updates for INTEL-SA-01083
* Security updates for INTEL-SA-01118
* Security updates for INTEL-SA-01100
* Security updates for INTEL-SA-01038
* Security updates for INTEL-SA-01046
* Update for functional issues. Refer to Intel Core Ultra Processor for
details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Processor
Scalable Family Specification Update for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Scalable
Processors Specification Update for details.
* Update for functional issues. Refer to 2nd Generation Intel Xeon Processor
Scalable Family Specification Update for details
* Update for functional issues. Refer to Intel Xeon D-2700 Processor
Specification Update for details.
* Update for functional issues. Refer to Intel Xeon E-2300 Processor
Specification Update for details.
* Update for functional issues. Refer to 13th Generation Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family for details.
* Update for functional issues. Refer to 11th Gen Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 10th Gen Intel Core Processor
Families Specification Update for details.
* Update for functional issues. Refer to 10th Generation Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 8th and 9th Generation Intel Core
Processor Family Spec Update for details.
* Update for functional issues. Refer to 8th Generation Intel Core Processor
Families Specification Update for details.
* Update for functional issues. Refer to 7th and 8th Generation Intel Core
Processor Specification Update for details.
* Update for functional issues. Refer to Intel Processors and Intel Core i3
N-Series for details.
* Update for functional issues. Refer to Intel Atom x6000E Series, and Intel
Pentium and Celeron N and J Series Processors for Internet of Things (IoT)
Applications for details.
* Intel CPU Microcode was updated to 20240531 release:
* Update for functional issues. Refer to Intel Pentium Silver and Intel
Celeron Processor Specification Update
* Intel CPU Microcode was updated to the 20240514 release (bsc#1224277)
* Security updates for INTEL-SA-01051
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01051.html
* Security updates for INTEL-SA-01052
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01052.html
* Security updates for INTEL-SA-01036
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01036.html
* Update for functional issues. Refer to 5th Gen Intel Xeon Processor Scalable
Family https://cdrdv2.intel.com/v1/dl/getContent/793902 for details.
* Update for functional issues. Refer to 4th Gen Intel Xeon Scalable
Processors Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/772415 for details.
* Update for functional issues. Refer to 14th 13th Generation Intel Core
Processor Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/740518 for details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family https://cdrdv2.intel.com/v1/dl/getContent/682436 for details.
* Update for functional issues. Refer to Intel Processors and Intel Core i3
N-Series https://cdrdv2.intel.com/v1/dl/getContent/764616 for details.
* * Intel CPU Microcode was updated to 20240312 release. (bsc#1221323)
* Security updates for INTEL-SA-INTEL-SA-00972
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-00972.html
* Security updates for INTEL-SA-INTEL-SA-00982
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-00982.html
* Security updates for INTEL-SA-INTEL-SA-00898
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-00898.html
* Security updates for INTEL-SA-INTEL-SA-00960
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-00960.html
* Security updates for INTEL-SA-INTEL-SA-01045
https://www.intel.com/content/www/us/en/security-center/advisory/intel-
sa-01045.html
* Update for functional issues. Refer to Intel Core Ultra Processor
https://cdrdv2.intel.com/v1/dl/getContent/792254 for details.
* Update for functional issues. Refer to 13th Generation Intel Core Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/740518 for
details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family https://cdrdv2.intel.com/v1/dl/getContent/682436 for details.
* Update for functional issues. Refer to 11th Gen Intel Core Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/631123 for
details.
* Update for functional issues. Refer to 10th Gen Intel Core Processor
Families Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/341079 for details.
* Update for functional issues. Refer to 10th Generation Intel Core Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/615213 for
details.
* Update for functional issues. Refer to 8th and 9th Generation Intel Core
Processor Family Spec Update
https://cdrdv2.intel.com/v1/dl/getContent/337346 for details.
* Update for functional issues. Refer to 8th Generation Intel Core Processor
Families Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/338025 for details.
* Update for functional issues. Refer to 7th and 8th Generation Intel Core
Processor Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/334663 for details.
* Update for functional issues. Refer to 5th Gen Intel Xeon Scalable
Processors Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/793902 for details.
* Update for functional issues. Refer to 4th Gen Intel Xeon Scalable
Processors Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/772415 for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Scalable
Processors Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/634897 for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Processor
Scalable Family Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/637780 for details.
* Update for functional issues. Refer to 2nd Generation Intel Xeon Processor
Scalable Family Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/338848 for details.
* Update for functional issues. Refer to Intel Processors and Intel Core i3
N-Series https://cdrdv2.intel.com/v1/dl/getContent/764616 for details.
* Update for functional issues. Refer to Intel Xeon D-2700 Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/714071 for
details.
* Update for functional issues. Refer to Intel Xeon E-2300 Processor
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/709192 for
details.
* Update for functional issues. Refer to Intel Xeon Processor Scalable Family
Specification Update https://cdrdv2.intel.com/v1/dl/getContent/613537 for
details.
* Update for functional issues. Refer to Intel Atom C3000 Processor Product
Family Specification Update https://cdrdv2.intel.com/v1/dl/getContent/336345
for details.
* Update for functional issues. Refer to Intel Atom x6000E Series, and Intel
Pentium and Celeron N and J Series Processors for Internet of Things (IoT)
Applications https://cdrdv2.intel.com/v1/dl/getContent/636674 for details.
* Update for functional issues. Refer to Intel Pentium Silver and Intel
Celeron Processor Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/336562 for details.
* Update for functional issues. Refer to Intel Pentium Silver and Intel
Celeron Processor Specification Update
https://cdrdv2.intel.com/v1/dl/getContent/634542 for details.
* Intel CPU Microcode was updated to 20231114 release. (bsc#1215278)
* Security updates for INTEL-SA-00950
* Update for functional issues. Refer to 13th Generation Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family for details.
* Update for functional issues. Refer to 11th Gen Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 10th Gen Intel Core Processor
Families Specification Update for details.
* Update for functional issues. Refer to 4th Gen Intel Xeon Scalable
Processors Specification Update for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Scalable
Processors Specification Update for details.
* Update for functional issues. Refer to Intel Processors and Intel Core i3
N-Series for details.
* Update for functional issues. Refer to Intel Xeon D-2700 Processor
Specification Update for details.
* Update for functional issues. Refer to Intel Xeon E-2300 Processor
Specification Update for details.
* Intel CPU Microcode was updated to 20231114 pre-release (labeled 20231113).
(bsc#1215278)
* Intel CPU Microcode was updated to 20230808 release. (bsc#1214099)
* Security updates for INTEL-SA-00828 (bsc#1206418)
* Security updates for INTEL-SA-00836
* Security updates for INTEL-SA-00837
* Update for functional issues. Refer to 13th Generation Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 12th Generation Intel Core Processor
Family for details.
* Update for functional issues. Refer to 11th Gen Intel Core Processor
Specification Update for details.
* Update for functional issues. Refer to 10th Gen Intel Core Processor
Families Specification Update for details.
* Update for functional issues. Refer to 8th and 9th Generation Intel Core
Processor Family Spec Update for details.
* Update for functional issues. Refer to 8th Generation Intel Core Processor
Families Specification Update for details.
* Update for functional issues. Refer to 7th and 8th Generation Intel Core
Processor Specification Update for details.
* Update for functional issues. Refer to Intel Processors and Intel Core i3
N-Series for details.
* Update for functional issues. Refer to 4th Gen Intel Xeon Scalable
Processors Specification Update for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Scalable
Processors Specification Update for details.
* Update for functional issues. Refer to 2nd Generation Intel Xeon Processor
Scalable Family Specification Update for details.
* Update for functional issues. Refer to Intel Xeon Processor Scalable Family
Specification Update for details.
* Update for functional issues. Refer to 3rd Generation Intel Xeon Processor
Scalable Family Specification Update for details.
* Update for functional issues. Refer to Intel Xeon E-2300 Processor
Specification Update for details.
* Update for functional issues. Refer to Intel Xeon D-2700 Processor
Specification Update for details.
* Update for functional issues. Refer to Intel Xeon D-2100 Processor
Specification Update for details.
* Intel CPU Microcode was updated to 20230613 release.
* Intel CPU Microcode was updated to 20230512 release.
* Intel CPU Microcode was updated to 20230512 release. (bsc#1211382)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE
zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2025-1032=1
* SUSE Linux Enterprise Server 11 SP4
zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2025-1032=1
## Package List:
* SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE (x86_64)
* microcode_ctl-1.17-102.83.81.1
* SUSE Linux Enterprise Server 11 SP4 (x86_64)
* microcode_ctl-1.17-102.83.81.1
## References:
* https://www.suse.com/security/cve/CVE-2022-40982.html
* https://www.suse.com/security/cve/CVE-2022-41804.html
* https://www.suse.com/security/cve/CVE-2023-22655.html
* https://www.suse.com/security/cve/CVE-2023-23583.html
* https://www.suse.com/security/cve/CVE-2023-23908.html
* https://www.suse.com/security/cve/CVE-2023-28746.html
* https://www.suse.com/security/cve/CVE-2023-38575.html
* https://www.suse.com/security/cve/CVE-2023-39368.html
* https://www.suse.com/security/cve/CVE-2023-42667.html
* https://www.suse.com/security/cve/CVE-2023-43490.html
* https://www.suse.com/security/cve/CVE-2023-45733.html
* https://www.suse.com/security/cve/CVE-2023-45745.html
* https://www.suse.com/security/cve/CVE-2023-46103.html
* https://www.suse.com/security/cve/CVE-2023-47855.html
* https://www.suse.com/security/cve/CVE-2023-49141.html
* https://www.suse.com/security/cve/CVE-2024-21820.html
* https://www.suse.com/security/cve/CVE-2024-21853.html
* https://www.suse.com/security/cve/CVE-2024-23918.html
* https://www.suse.com/security/cve/CVE-2024-23984.html
* https://www.suse.com/security/cve/CVE-2024-24853.html
* https://www.suse.com/security/cve/CVE-2024-24968.html
* https://www.suse.com/security/cve/CVE-2024-24980.html
* https://www.suse.com/security/cve/CVE-2024-25939.html
* https://www.suse.com/security/cve/CVE-2024-31068.html
* https://www.suse.com/security/cve/CVE-2024-36293.html
* https://www.suse.com/security/cve/CVE-2024-37020.html
* https://www.suse.com/security/cve/CVE-2024-39355.html
* https://bugzilla.suse.com/show_bug.cgi?id=1206418
* https://bugzilla.suse.com/show_bug.cgi?id=1211382
* https://bugzilla.suse.com/show_bug.cgi?id=1214099
* https://bugzilla.suse.com/show_bug.cgi?id=1215278
* https://bugzilla.suse.com/show_bug.cgi?id=1221323
* https://bugzilla.suse.com/show_bug.cgi?id=1224277
* https://bugzilla.suse.com/show_bug.cgi?id=1229129
* https://bugzilla.suse.com/show_bug.cgi?id=1230400
* https://bugzilla.suse.com/show_bug.cgi?id=1233313
* https://bugzilla.suse.com/show_bug.cgi?id=1237096
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20250326/7d4d6386/attachment.htm>
More information about the sle-security-updates
mailing list