Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2025-0068)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.1.10.2025.0068

Kategorie: Mageia Linux Local Security Checks

Titel: Mageia: Security Advisory (MGASA-2025-0068)

Zusammenfassung: The remote host is missing an update for the 'microcode' package(s) announced via the MGASA-2025-0068 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'microcode' package(s) announced via the MGASA-2025-0068 advisory.

Vulnerability Insight:
Improper Finite State Machines (FSMs) in Hardware Logic for some Intel(r)
Processors may allow privileged user to potentially enable denial of
service via local access. (CVE-2024-31068)
Improper access control in the EDECCSSA user leaf function for some
Intel(r) Processors with Intel(r) SGX may allow an authenticated user to
potentially enable denial of service via local access. (CVE-2024-36293)
Improper input validation in UEFI firmware for some Intel(r) processors
may allow a privileged user to potentially enable escalation of
privilege via local access. (CVE-2023-43758)
Improper handling of physical or environmental conditions in some Intel(r)
Processors may allow an authenticated user to enable denial of service
via local access. (CVE-2024-39355)
Sequence of processor instructions leads to unexpected behavior in the
Intel(r) DSA V1.0 for some Intel(r) Xeon(r) Processors may allow an
authenticated user to potentially enable denial of service via local
access. (CVE-2024-37020)

Affected Software/OS:
'microcode' package(s) on Mageia 9.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2023-43758
Common Vulnerability Exposure (CVE) ID: CVE-2024-31068
Common Vulnerability Exposure (CVE) ID: CVE-2024-36293
Common Vulnerability Exposure (CVE) ID: CVE-2024-37020
Common Vulnerability Exposure (CVE) ID: CVE-2024-39355

Copyright Copyright (C) 2025 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2025.0068
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2025-0068)
Zusammenfassung:	The remote host is missing an update for the 'microcode' package(s) announced via the MGASA-2025-0068 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'microcode' package(s) announced via the MGASA-2025-0068 advisory. Vulnerability Insight: Improper Finite State Machines (FSMs) in Hardware Logic for some Intel(r) Processors may allow privileged user to potentially enable denial of service via local access. (CVE-2024-31068) Improper access control in the EDECCSSA user leaf function for some Intel(r) Processors with Intel(r) SGX may allow an authenticated user to potentially enable denial of service via local access. (CVE-2024-36293) Improper input validation in UEFI firmware for some Intel(r) processors may allow a privileged user to potentially enable escalation of privilege via local access. (CVE-2023-43758) Improper handling of physical or environmental conditions in some Intel(r) Processors may allow an authenticated user to enable denial of service via local access. (CVE-2024-39355) Sequence of processor instructions leads to unexpected behavior in the Intel(r) DSA V1.0 for some Intel(r) Xeon(r) Processors may allow an authenticated user to potentially enable denial of service via local access. (CVE-2024-37020) Affected Software/OS: 'microcode' package(s) on Mageia 9. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2023-43758 Common Vulnerability Exposure (CVE) ID: CVE-2024-31068 Common Vulnerability Exposure (CVE) ID: CVE-2024-36293 Common Vulnerability Exposure (CVE) ID: CVE-2024-37020 Common Vulnerability Exposure (CVE) ID: CVE-2024-39355
Copyright	Copyright (C) 2025 Greenbone AG