OVAL Reference oval:org.opensuse.security:def:53488

Oval Definition:

oval:org.opensuse.security:def:53488

Revision Date:	2020-12-01	Version:	1
Title:	Security update for ucode-intel (Moderate)
Description:	This update for ucode-intel fixes the following issues: Updated Intel CPU Microcode to 20200602 (prerelease) (bsc#1172466) This update contains security mitigations for: - CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it. This attack is known as Special Register Buffer Data Sampling (SRBDS) or 'CrossTalk' (bsc#1154824). - CVE-2020-0548,CVE-2020-0549: Additional ucode updates were supplied to mitigate the Vector Register and L1D Eviction Sampling aka 'CacheOutAttack' attacks. (bsc#1156353) Microcode Table: Processor Identifier Version Products Model Stepping F-MO-S/PI Old->New ---- new platforms ---------------------------------------- ---- updated platforms ------------------------------------ HSW C0 6-3c-3/32 00000027->00000028 Core Gen4 BDW-U/Y E0/F0 6-3d-4/c0 0000002e->0000002f Core Gen5 HSW-U C0/D0 6-45-1/72 00000025->00000026 Core Gen4 HSW-H C0 6-46-1/32 0000001b->0000001c Core Gen4 BDW-H/E3 E0/G0 6-47-1/22 00000021->00000022 Core Gen5 SKL-U/Y D0 6-4e-3/c0 000000d6->000000dc Core Gen6 Mobile SKL-U23e K1 6-4e-3/c0 000000d6->000000dc Core Gen6 Mobile SKX-SP B1 6-55-3/97 01000151->01000157 Xeon Scalable SKX-SP H0/M0/U0 6-55-4/b7 02000065->02006906 Xeon Scalable SKX-D M1 6-55-4/b7 02000065->02006906 Xeon D-21xx CLX-SP B0 6-55-6/bf 0400002c->04002f01 Xeon Scalable Gen2 CLX-SP B1 6-55-7/bf 0500002c->04002f01 Xeon Scalable Gen2 SKL-H/S R0/N0 6-5e-3/36 000000d6->000000dc Core Gen6; Xeon E3 v5 AML-Y22 H0 6-8e-9/10 000000ca->000000d6 Core Gen8 Mobile KBL-U/Y H0 6-8e-9/c0 000000ca->000000d6 Core Gen7 Mobile CFL-U43e D0 6-8e-a/c0 000000ca->000000d6 Core Gen8 Mobile WHL-U W0 6-8e-b/d0 000000ca->000000d6 Core Gen8 Mobile AML-Y42 V0 6-8e-c/94 000000ca->000000d6 Core Gen10 Mobile CML-Y42 V0 6-8e-c/94 000000ca->000000d6 Core Gen10 Mobile WHL-U V0 6-8e-c/94 000000ca->000000d6 Core Gen8 Mobile KBL-G/H/S/E3 B0 6-9e-9/2a 000000ca->000000d6 Core Gen7; Xeon E3 v6 CFL-H/S/E3 U0 6-9e-a/22 000000ca->000000d6 Core Gen8 Desktop, Mobile, Xeon E CFL-S B0 6-9e-b/02 000000ca->000000d6 Core Gen8 CFL-H/S P0 6-9e-c/22 000000ca->000000d6 Core Gen9 CFL-H R0 6-9e-d/22 000000ca->000000d6 Core Gen9 Mobile Also contains the Intel CPU Microcode update to 20200520: Processor Identifier Version Products Model Stepping F-MO-S/PI Old->New ---- new platforms ---------------------------------------- ---- updated platforms ------------------------------------ SNB-E/EN/EP C1/M0 6-2d-6/6d 0000061f->00000621 Xeon E3/E5, Core X SNB-E/EN/EP C2/M1 6-2d-7/6d 00000718->0000071a Xeon E3/E5, Core X
Family:	unix	Class:	patch
Status:		Reference(s):	1020950 1024749 1028103 1035807 1036457 1045460 1050469 1077001 1079600 1080249 1154824 1156353 1172466 1177409 1177412 1177413 1177414 912607 927559 952871 963415 968046 968048 968051 968053 968374 980364 980377 981049 981050 981061 982009 982010 982011 982012 982013 CVE-2010-2074 CVE-2011-0421 CVE-2012-1162 CVE-2012-1163 CVE-2012-4929 CVE-2013-0240 CVE-2013-1799 CVE-2013-1986 CVE-2013-7456 CVE-2015-0797 CVE-2015-1545 CVE-2015-1546 CVE-2015-2331 CVE-2015-3197 CVE-2015-6908 CVE-2015-8872 CVE-2015-8876 CVE-2015-8877 CVE-2015-8879 CVE-2016-0702 CVE-2016-0703 CVE-2016-0704 CVE-2016-0797 CVE-2016-0799 CVE-2016-0800 CVE-2016-10244 CVE-2016-2399 CVE-2016-4804 CVE-2016-5093 CVE-2016-5094 CVE-2016-5095 CVE-2016-5096 CVE-2016-7586 CVE-2016-7589 CVE-2016-7592 CVE-2016-7599 CVE-2016-7623 CVE-2016-7632 CVE-2016-7635 CVE-2016-7639 CVE-2016-7641 CVE-2016-7645 CVE-2016-7652 CVE-2016-7654 CVE-2016-7656 CVE-2016-7947 CVE-2016-7948 CVE-2016-9434 CVE-2016-9435 CVE-2016-9436 CVE-2016-9437 CVE-2016-9438 CVE-2016-9439 CVE-2016-9440 CVE-2016-9441 CVE-2016-9442 CVE-2016-9443 CVE-2016-9621 CVE-2016-9622 CVE-2016-9623 CVE-2016-9624 CVE-2016-9625 CVE-2016-9626 CVE-2016-9627 CVE-2016-9628 CVE-2016-9629 CVE-2016-9630 CVE-2016-9631 CVE-2016-9632 CVE-2016-9633 CVE-2017-2350 CVE-2017-2354 CVE-2017-2355 CVE-2017-2356 CVE-2017-2362 CVE-2017-2363 CVE-2017-2364 CVE-2017-2365 CVE-2017-2366 CVE-2017-2369 CVE-2017-2371 CVE-2017-2373 CVE-2017-2496 CVE-2017-2510 CVE-2017-2538 CVE-2017-2539 CVE-2017-7018 CVE-2017-7030 CVE-2017-7034 CVE-2017-7037 CVE-2017-7039 CVE-2017-7046 CVE-2017-7048 CVE-2017-7055 CVE-2017-7056 CVE-2017-7061 CVE-2017-7064 CVE-2017-7864 CVE-2017-8105 CVE-2017-8287 CVE-2017-9287 CVE-2018-1000007 CVE-2018-6871 CVE-2020-0543 CVE-2020-0548 CVE-2020-0549 CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27673 SUSE-SU-2015:0942-1 SUSE-SU-2016:0641-1 SUSE-SU-2016:1633-1 SUSE-SU-2016:2145-1 SUSE-SU-2017:2933-1 SUSE-SU-2018:0217-1 SUSE-SU-2018:0414-1 SUSE-SU-2018:0428-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.0 NonFree openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information dbus-1-1.12.2-lp150.1 is installed OR dbus-1-x11-1.12.2-lp150.1 is installed OR libdbus-1-3-1.12.2-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.0 NonFree is installed AND opera-63.0.3368.66-lp151.2.6 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information MozillaThunderbird-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-buildsymbols-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-translations-common-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-translations-other-60.7.2-lp151.2.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-10.0.12-0.4 is installed OR MozillaFirefox-translations-10.0.12-0.4 is installed OR libfreebl3-3.14.1-0.3 is installed OR libfreebl3-32bit-3.14.1-0.3 is installed OR mozilla-nspr-4.9.4-0.3 is installed OR mozilla-nspr-32bit-4.9.4-0.3 is installed OR mozilla-nss-3.14.1-0.3 is installed OR mozilla-nss-32bit-3.14.1-0.3 is installed OR mozilla-nss-tools-3.14.1-0.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.5.3esr-0.8 is installed OR MozillaFirefox-translations-31.5.3esr-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.540-0.23 is installed OR flash-player-gnome-11.2.202.540-0.23 is installed OR flash-player-kde4-11.2.202.540-0.23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information gstreamer-0_10-plugins-bad-0.10.23-17 is installed OR gstreamer-0_10-plugins-bad-lang-0.10.23-17 is installed OR libgstbasecamerabinsrc-0_10-23-0.10.23-17 is installed OR libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-17 is installed OR libgstbasevideo-0_10-23-0.10.23-17 is installed OR libgstbasevideo-0_10-23-32bit-0.10.23-17 is installed OR libgstcodecparsers-0_10-23-0.10.23-17 is installed OR libgstphotography-0_10-23-0.10.23-17 is installed OR libgstphotography-0_10-23-32bit-0.10.23-17 is installed OR libgstsignalprocessor-0_10-23-0.10.23-17 is installed OR libgstsignalprocessor-0_10-23-32bit-0.10.23-17 is installed OR libgstvdp-0_10-23-0.10.23-17 is installed OR libgstvdp-0_10-23-32bit-0.10.23-17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND dosfstools-3.0.26-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.18.0-2.9 is installed OR libwebkit2gtk-4_0-37-2.18.0-2.9 is installed OR libwebkit2gtk3-lang-2.18.0-2.9 is installed OR typelib-1_0-JavaScriptCore-4_0-2.18.0-2.9 is installed OR typelib-1_0-WebKit2-4_0-2.18.0-2.9 is installed OR webkit2gtk-4_0-injected-bundles-2.18.0-2.9 is installed OR webkit2gtk3-2.18.0-2.9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libXrandr2-1.5.0-6 is installed OR libXrandr2-32bit-1.5.0-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gnome-online-accounts-3.20.5-9 is installed OR gnome-online-accounts-lang-3.20.5-9 is installed OR libgoa-1_0-0-3.20.5-9 is installed OR libgoa-1_0-0-32bit-3.20.5-9 is installed OR libgoa-backend-1_0-1-3.20.5-9 is installed OR typelib-1_0-Goa-1_0-3.20.5-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information krb5-1.12.1-19 is installed OR krb5-32bit-1.12.1-19 is installed OR krb5-client-1.12.1-19 is installed OR krb5-doc-1.12.1-19 is installed OR krb5-plugin-kdb-ldap-1.12.1-19 is installed OR krb5-plugin-preauth-otp-1.12.1-19 is installed OR krb5-plugin-preauth-pkinit-1.12.1-19 is installed OR krb5-server-1.12.1-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_62-60_64_8-default-12-4 is installed OR kgraft-patch-3_12_62-60_64_8-xen-12-4 is installed OR kgraft-patch-SLE12-SP1_Update_8-12-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dracut-044-87 is installed OR dracut-fips-044-87 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_104-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_28-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information git-2.12.3-27.22 is installed OR git-core-2.12.3-27.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.21 is installed OR apache2-doc-2.4.23-29.21 is installed OR apache2-example-pages-2.4.23-29.21 is installed OR apache2-prefork-2.4.23-29.21 is installed OR apache2-utils-2.4.23-29.21 is installed OR apache2-worker-2.4.23-29.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information jakarta-taglibs-standard-1.1.1-255 is installed OR jakarta-taglibs-standard-javadoc-1.1.1-255 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND ucode-intel-20200602-3.43 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-Pillow-2.7.0-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND nodejs6-6.17.1-11.30 is installed

BACK