Oval Definition:	oval:org.opensuse.security:def:50854
Revision Date: 2020-12-01 Version: 1 Title: Security update for ucode-intel (Moderate) Description: This update for ucode-intel fixes the following issues: - Intel CPU Microcode updated to 20201027 prerelease - CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446) - CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594) # New Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | TGL | B1 | 06-8c-01/80 | | 00000068 | Core Gen11 Mobile | CPX-SP | A1 | 06-55-0b/bf | | 0700001e | Xeon Scalable Gen3 | CML-H | R1 | 06-a5-02/20 | | 000000e0 | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | | 000000e0 | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | | 000000e0 | Core Gen10 | CML-U62 V2 | K0 | 06-a6-01/80 | | 000000e0 | Core Gen10 Mobile # Updated Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | GKL-R | R0 | 06-7a-08/01 | 00000016 | 00000018 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | SKL-U/Y | D0 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | SKL-U23e | K1 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | APL | D0 | 06-5c-09/03 | 00000038 | 00000040 | Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx | APL | E0 | 06-5c-0a/03 | 00000016 | 0000001e | Atom x5-E39xx | SKL-H/S | R0/N0 | 06-5e-03/36 | 000000d6 | 000000e2 | Core Gen6; Xeon E3 v5 | HSX-E/EP | Cx/M1 | 06-3f-02/6f | 00000043 | 00000044 | Core Gen4 X series; Xeon E5 v3 | SKX-SP | B1 | 06-55-03/97 | 01000157 | 01000159 | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04002f01 | 04003003 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05002f01 | 05003003 | Xeon Scalable Gen2 | ICL-U/Y | D1 | 06-7e-05/80 | 00000078 | 000000a0 | Core Gen10 Mobile | AML-Y22 | H0 | 06-8e-09/10 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000d6 | 000000de | Core Gen7 Mobile | CFL-U43e | D0 | 06-8e-0a/c0 | 000000d6 | 000000e0 | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000d6 | 000000de | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-G/H/S/E3 | B0 | 06-9e-09/2a | 000000d6 | 000000de | Core Gen7; Xeon E3 v6 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000d6 | 000000de | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000d6 | 000000de | Core Gen8 | CFL-H/S | P0 | 06-9e-0c/22 | 000000d6 | 000000de | Core Gen9 | CFL-H | R0 | 06-9e-0d/22 | 000000d6 | 000000de | Core Gen9 Mobile | CML-U62 | A0 | 06-a6-00/80 | 000000ca | 000000e0 | Core Gen10 Mobile Family: unix Class: patch Status: Reference(s): 1027519 1085449 1093311 1096209 1098155 1128712 1128858 1129271 1129392 1132160 1132690 1133191 1134190 1134428 1135222 1136020 1136081 1136446 1136935 1137597 1138316 1140492 1156402 1158440 1162224 1162367 1162825 1168699 1168994 1170446 1172004 1172686 1173594 1173786 1173812 1173937 1174010 1174463 1174570 1174922 1174923 1175223 1176589 1176764 1177950 1178591 CVE-2018-1152 CVE-2018-11813 CVE-2018-1417 CVE-2018-14498 CVE-2018-2783 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2825 CVE-2018-2826 CVE-2019-11068 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-19316 CVE-2019-20919 CVE-2019-2201 CVE-2019-3846 CVE-2019-5419 CVE-2019-9674 CVE-2020-10713 CVE-2020-12673 CVE-2020-12674 CVE-2020-12693 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-15095 CVE-2020-15706 CVE-2020-15707 CVE-2020-1730 CVE-2020-28368 CVE-2020-7068 CVE-2020-8252 CVE-2020-8492 CVE-2020-8695 CVE-2020-8698 SUSE-SU-2018:2068-1 SUSE-SU-2019:0711-1 SUSE-SU-2019:1588-1 SUSE-SU-2019:1973-1 SUSE-SU-2020:0320-1 SUSE-SU-2020:0510-1 SUSE-SU-2020:0967-1 SUSE-SU-2020:2073-1 SUSE-SU-2020:2266-1 SUSE-SU-2020:2827-1 SUSE-SU-2020:2829-1 SUSE-SU-2020:3276-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-17.0.10esr-0.7 is installed OR MozillaFirefox-branding-SLED-7-0.12 is installed OR MozillaFirefox-translations-17.0.10esr-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cron-4.2-55 is installed OR cronie-1.4.11-55 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-1.7.5-9 is installed OR cups-client-1.7.5-9 is installed OR cups-libs-1.7.5-9 is installed OR cups-libs-32bit-1.7.5-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR libnm-glib-vpn1-1.0.12-8 is installed OR libnm-glib4-1.0.12-8 is installed OR libnm-util2-1.0.12-8 is installed OR libnm0-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND libjpeg-turbo-1.5.3-5.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND ucode-intel-20201027-3.33 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-2-4 is installed OR kernel-livepatch-SLE15-SP1_Update_0-2-4 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information php7-7.2.5-4.61 is installed OR php7-embed-7.2.5-4.61 is installed OR php7-readline-7.2.5-4.61 is installed OR php7-sodium-7.2.5-4.61 is installed OR php7-tidy-7.2.5-4.61 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libjpeg-turbo-1.5.3-5.12 is installed OR libjpeg62-32bit-62.2.0-5.12 is installed OR libjpeg62-devel-32bit-62.2.0-5.12 is installed OR libjpeg62-turbo-1.5.3-5.12 is installed OR libjpeg8-devel-32bit-8.1.2-5.12 is installed OR libturbojpeg0-32bit-8.1.2-5.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND terraform-0.12.19-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information rmt-server-2.3.1-3.3 is installed OR rmt-server-config-2.3.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND gzip-1.6-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_12-22.18 is installed OR xen-doc-html-4.5.5_12-22.18 is installed OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed OR xen-libs-4.5.5_12-22.18 is installed OR xen-libs-32bit-4.5.5_12-22.18 is installed OR xen-tools-4.5.5_12-22.18 is installed OR xen-tools-domU-4.5.5_12-22.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information guestfs-data-1.32.4-14 is installed OR guestfs-tools-1.32.4-14 is installed OR guestfsd-1.32.4-14 is installed OR libguestfs0-1.32.4-14 is installed OR perl-Sys-Guestfs-1.32.4-14 is installed OR python-libguestfs-1.32.4-14 is installed OR virt-p2v-1.32.4-14 is installed OR virt-v2v-1.32.4-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND clamav-0.100.1-33.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-2.4.23-28 is installed OR apache2-doc-2.4.23-28 is installed OR apache2-example-pages-2.4.23-28 is installed OR apache2-prefork-2.4.23-28 is installed OR apache2-utils-2.4.23-28 is installed OR apache2-worker-2.4.23-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.74 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.74 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.74 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND minicom-2.7-3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information grub2-2.02-19.48 is installed OR grub2-arm64-efi-2.02-19.48 is installed OR grub2-i386-pc-2.02-19.48 is installed OR grub2-powerpc-ieee1275-2.02-19.48 is installed OR grub2-s390x-emu-2.02-19.48 is installed OR grub2-snapper-plugin-2.02-19.48 is installed OR grub2-systemd-sleep-plugin-2.02-19.48 is installed OR grub2-x86_64-efi-2.02-19.48 is installed OR grub2-x86_64-xen-2.02-19.48 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information dovecot23-2.3.10-4.27 is installed OR dovecot23-backend-mysql-2.3.10-4.27 is installed OR dovecot23-backend-pgsql-2.3.10-4.27 is installed OR dovecot23-backend-sqlite-2.3.10-4.27 is installed OR dovecot23-devel-2.3.10-4.27 is installed OR dovecot23-fts-2.3.10-4.27 is installed OR dovecot23-fts-lucene-2.3.10-4.27 is installed OR dovecot23-fts-solr-2.3.10-4.27 is installed OR dovecot23-fts-squat-2.3.10-4.27 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.11.0-3.91 is installed OR MozillaThunderbird-translations-common-68.11.0-3.91 is installed OR MozillaThunderbird-translations-other-68.11.0-3.91 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-requests-2.8.1-6.9 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
BACK