 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.883249 |
| Category: | CentOS Local Security Checks |
| Title: | CentOS: Security Advisory for microcode_ctl (CESA-2020:2432) |
| Summary: | The remote host is missing an update for the 'microcode_ctl'; package(s) announced via the CESA-2020:2432 advisory. |
| Description: | Summary: The remote host is missing an update for the 'microcode_ctl' package(s) announced via the CESA-2020:2432 advisory. Vulnerability Insight: Security Fix(es): * hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543) * hw: L1D Cache Eviction Sampling (CVE-2020-0549) * hw: Vector Register Data Sampling (CVE-2020-0548) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Update Intel CPU microcode to microcode-20200602 release, addresses: - Update of 06-2d-06/0x6d (SNB-E/EN/EP C1/M0) microcode from revision 0x61f up to 0x621, - Update of 06-2d-07/0x6d (SNB-E/EN/EP C2/M1) microcode from revision 0x718 up to 0x71a, - Update of 06-3c-03/0x32 (HSW C0) microcode from revision 0x27 up to 0x28, - Update of 06-3d-04/0xc0 (BDW-U/Y E0/F0) microcode from revision 0x2e up to 0x2f, - Update of 06-45-01/0x72 (HSW-U C0/D0) microcode from revision 0x25 up to 0x26, - Update of 06-46-01/0x32 (HSW-H C0) microcode from revision 0x1b up to 0x1c, - Update of 06-47-01/0x22 (BDW-H/Xeon E3 E0/G0) microcode from revision 0x21 up to 0x22, - Update of 06-4e-03/0xc0 (SKL-U/Y D0) microcode from revision 0xd6 up to 0xdc, - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000151 up to 0x1000157, - Update of 06-55-04/0xb7 (SKX-SP H0/M0/U0, SKX-D M1) microcode (in intel-06-55-04/intel-ucode/06-55-04) from revision 0x2000065 up to 0x2006906, - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x400002c up to 0x4002f01, - Update of 06-55-07/0xbf (CLX-SP B1) microcode from revision 0x500002c up to 0x5002f01, - Update of 06-5e-03/0x36 (SKL-H/S R0/N0) microcode from revision 0xd6 up to 0xdc, - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x46 up to 0x78, - Update of 06-8e-09/0x10 (AML-Y22 H0) microcode from revision 0xca up to 0xd6, - Update of 06-8e-09/0xc0 (KBL-U/Y H0) microcode from revision 0xca up to 0xd6, - Update of 06-8e-0a/0xc0 (CFL-U43e D0) microcode from revision 0xca up to 0xd6, - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xca up to 0xd6, - Update of 06-8e-0c/0x94 (AML-Y42 V0, CML-Y42 V0, WHL-U V0) microcode from revision 0xca up to 0xd6, - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from revision 0xca up to 0xd6, - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E3 U0) microcode from revision 0xca up to 0xd6, - Update of 06-9e-0b/0x02 (CFL-S B0) microcode from revision 0xca up to 0xd6, - Update of 06-9e-0c/0x22 (CFL-H/S P0) microcode from revision 0xca up to 0xd6, - Update of 06-9e-0d/0x22 (CFL-H R0) m ... Description truncated. Please see the references for more information. Affected Software/OS: 'microcode_ctl' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2020-0543 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DT2VKDMQ3I37NBNJ256A2EXR7OJHXXKZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NQZMOSHLTBBIECENNXA6M7DN5FEED4KI/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T5OUM24ZC43G4IDT3JUCIHJTSDXJSK6Y/ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html http://www.openwall.com/lists/oss-security/2020/07/14/5 SuSE Security Announcement: openSUSE-SU-2020:0818 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00025.html SuSE Security Announcement: openSUSE-SU-2020:0965 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00024.html SuSE Security Announcement: openSUSE-SU-2020:0985 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00031.html https://usn.ubuntu.com/4385-1/ https://usn.ubuntu.com/4387-1/ https://usn.ubuntu.com/4388-1/ https://usn.ubuntu.com/4389-1/ https://usn.ubuntu.com/4390-1/ https://usn.ubuntu.com/4391-1/ https://usn.ubuntu.com/4392-1/ https://usn.ubuntu.com/4393-1/ Common Vulnerability Exposure (CVE) ID: CVE-2020-0548 Debian Security Information: DSA-4701 (Google Search) https://www.debian.org/security/2020/dsa-4701 https://lists.debian.org/debian-lts-announce/2020/06/msg00019.html SuSE Security Announcement: openSUSE-SU-2020:0791 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00016.html Common Vulnerability Exposure (CVE) ID: CVE-2020-0549 |
| Copyright | Copyright (C) 2020 Greenbone Networks GmbH |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |