Oval Definition:	oval:org.opensuse.security:def:53711
Revision Date: 2020-12-01 Version: 1 Title: Security update for ucode-intel (Moderate) Description: This update for ucode-intel fixes the following issues: - Intel CPU Microcode updated to 20201027 prerelease - CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446) - CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594) # New Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | TGL | B1 | 06-8c-01/80 | | 00000068 | Core Gen11 Mobile | CPX-SP | A1 | 06-55-0b/bf | | 0700001e | Xeon Scalable Gen3 | CML-H | R1 | 06-a5-02/20 | | 000000e0 | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | | 000000e0 | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | | 000000e0 | Core Gen10 | CML-U62 V2 | K0 | 06-a6-01/80 | | 000000e0 | Core Gen10 Mobile # Updated Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | GKL-R | R0 | 06-7a-08/01 | 00000016 | 00000018 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | SKL-U/Y | D0 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | SKL-U23e | K1 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | APL | D0 | 06-5c-09/03 | 00000038 | 00000040 | Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx | APL | E0 | 06-5c-0a/03 | 00000016 | 0000001e | Atom x5-E39xx | SKL-H/S | R0/N0 | 06-5e-03/36 | 000000d6 | 000000e2 | Core Gen6; Xeon E3 v5 | HSX-E/EP | Cx/M1 | 06-3f-02/6f | 00000043 | 00000044 | Core Gen4 X series; Xeon E5 v3 | SKX-SP | B1 | 06-55-03/97 | 01000157 | 01000159 | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04002f01 | 04003003 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05002f01 | 05003003 | Xeon Scalable Gen2 | ICL-U/Y | D1 | 06-7e-05/80 | 00000078 | 000000a0 | Core Gen10 Mobile | AML-Y22 | H0 | 06-8e-09/10 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000d6 | 000000de | Core Gen7 Mobile | CFL-U43e | D0 | 06-8e-0a/c0 | 000000d6 | 000000e0 | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000d6 | 000000de | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-G/H/S/E3 | B0 | 06-9e-09/2a | 000000d6 | 000000de | Core Gen7; Xeon E3 v6 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000d6 | 000000de | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000d6 | 000000de | Core Gen8 | CFL-H/S | P0 | 06-9e-0c/22 | 000000d6 | 000000de | Core Gen9 | CFL-H | R0 | 06-9e-0d/22 | 000000d6 | 000000de | Core Gen9 Mobile | CML-U62 | A0 | 06-a6-00/80 | 000000ca | 000000e0 | Core Gen10 Mobile Family: unix Class: patch Status: Reference(s): 1026978 1026979 1026980 1026981 1026982 1026983 1026984 1026985 1026986 1026987 1026988 1041783 1042802 1042803 1043088 1045719 1045721 1047962 1049826 1053177 1060445 1061005 1065022 1076391 1092874 1094932 1096748 1099019 1099162 1101295 1102261 1104448 1110542 1111319 1112911 1113296 1114908 1115341 1116840 1118758 1119373 1119820 1119873 1120263 1120463 1120629 1120630 1120631 1121611 1122062 1122471 1123137 1123681 1123843 1123865 1123967 1124897 1125415 1127026 1127155 1127220 1130161 1131823 1135749 1137977 1170446 1173594 663358 764147 901223 901277 949399 965786 969785 978193 982014 993025 CVE-2006-7250 CVE-2008-5077 CVE-2009-0590 CVE-2009-0591 CVE-2009-0789 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2010-0740 CVE-2010-0742 CVE-2010-1633 CVE-2010-2939 CVE-2010-3864 CVE-2010-4530 CVE-2010-5298 CVE-2011-0014 CVE-2011-3207 CVE-2011-3210 CVE-2011-4108 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2012-0027 CVE-2012-0050 CVE-2012-0884 CVE-2012-1165 CVE-2012-2110 CVE-2012-2686 CVE-2012-4929 CVE-2013-0166 CVE-2013-0169 CVE-2013-1985 CVE-2013-4353 CVE-2013-6449 CVE-2013-6450 CVE-2014-0076 CVE-2014-0160 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-3470 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3509 CVE-2014-3510 CVE-2014-3511 CVE-2014-3512 CVE-2014-3513 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-3569 CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-5139 CVE-2014-8275 CVE-2015-0204 CVE-2015-0205 CVE-2015-0206 CVE-2015-0209 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0293 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-1793 CVE-2015-1794 CVE-2015-3193 CVE-2015-3194 CVE-2015-3195 CVE-2015-3196 CVE-2015-3197 CVE-2015-7542 CVE-2015-7747 CVE-2015-7747 CVE-2016-0701 CVE-2016-0702 CVE-2016-0705 CVE-2016-0797 CVE-2016-0798 CVE-2016-0800 CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2109 CVE-2016-2176 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-2180 CVE-2016-2181 CVE-2016-2182 CVE-2016-2183 CVE-2016-2851 CVE-2016-5104 CVE-2016-6302 CVE-2016-6303 CVE-2016-6304 CVE-2016-6306 CVE-2016-7052 CVE-2016-7055 CVE-2016-7056 CVE-2017-3731 CVE-2017-3732 CVE-2017-6827 CVE-2017-6827 CVE-2017-6828 CVE-2017-6828 CVE-2017-6829 CVE-2017-6829 CVE-2017-6830 CVE-2017-6830 CVE-2017-6831 CVE-2017-6831 CVE-2017-6832 CVE-2017-6832 CVE-2017-6833 CVE-2017-6833 CVE-2017-6834 CVE-2017-6834 CVE-2017-6835 CVE-2017-6835 CVE-2017-6836 CVE-2017-6836 CVE-2017-6837 CVE-2017-6837 CVE-2017-6838 CVE-2017-6838 CVE-2017-6839 CVE-2017-6839 CVE-2017-7511 CVE-2017-7515 CVE-2017-7793 CVE-2017-7805 CVE-2017-7810 CVE-2017-7814 CVE-2017-7818 CVE-2017-7819 CVE-2017-7823 CVE-2017-7824 CVE-2017-7825 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2018-10861 CVE-2018-10873 CVE-2018-10893 CVE-2018-1128 CVE-2018-1129 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-5711 CVE-2020-8695 CVE-2020-8698 SUSE-SU-2016:0707-1 SUSE-SU-2016:1639-1 SUSE-SU-2017:0940-1 SUSE-SU-2017:1999-1 SUSE-SU-2017:2688-1 SUSE-SU-2018:0260-1 SUSE-SU-2018:2478-1 SUSE-SU-2018:2594-1 SUSE-SU-2019:2030-1 SUSE-SU-2020:3275-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information curl-7.59.0-lp150.1 is installed OR libcurl4-7.59.0-lp150.1 is installed OR libcurl4-32bit-7.59.0-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information elfutils-0.168-lp151.4.3 is installed OR elfutils-lang-0.168-lp151.4.3 is installed OR libasm-devel-0.168-lp151.4.3 is installed OR libasm1-0.168-lp151.4.3 is installed OR libasm1-32bit-0.168-lp151.4.3 is installed OR libdw-devel-0.168-lp151.4.3 is installed OR libdw1-0.168-lp151.4.3 is installed OR libdw1-32bit-0.168-lp151.4.3 is installed OR libebl-devel-0.168-lp151.4.3 is installed OR libebl-plugins-0.168-lp151.4.3 is installed OR libebl-plugins-32bit-0.168-lp151.4.3 is installed OR libelf-devel-0.168-lp151.4.3 is installed OR libelf-devel-32bit-0.168-lp151.4.3 is installed OR libelf1-0.168-lp151.4.3 is installed OR libelf1-32bit-0.168-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xen-4.1.6_04-0.5 is installed OR xen-doc-html-4.1.6_04-0.5 is installed OR xen-doc-pdf-4.1.6_04-0.5 is installed OR xen-kmp-default-4.1.6_04_3.0.101_0.5-0.5 is installed OR xen-kmp-pae-4.1.6_04_3.0.101_0.5-0.5 is installed OR xen-kmp-trace-4.1.6_04_3.0.101_0.5-0.5 is installed OR xen-libs-4.1.6_04-0.5 is installed OR xen-libs-32bit-4.1.6_04-0.5 is installed OR xen-tools-4.1.6_04-0.5 is installed OR xen-tools-domU-4.1.6_04-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information curl-7.19.7-1.40 is installed OR libcurl4-7.19.7-1.40 is installed OR libcurl4-32bit-7.19.7-1.40 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information mozilla-nspr-4.10.9-11 is installed OR mozilla-nspr-32bit-4.10.9-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libopenssl1_0_0-1.0.1i-9 is installed OR libopenssl1_0_0-32bit-1.0.1i-9 is installed OR openssl-1.0.1i-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libotr-4.0.0-9 is installed OR libotr5-4.0.0-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-52.4.0esr-109.6 is installed OR MozillaFirefox-translations-52.4.0esr-109.6 is installed OR libfreebl3-3.29.5-58.3 is installed OR libfreebl3-32bit-3.29.5-58.3 is installed OR libsoftokn3-3.29.5-58.3 is installed OR libsoftokn3-32bit-3.29.5-58.3 is installed OR mozilla-nss-3.29.5-58.3 is installed OR mozilla-nss-32bit-3.29.5-58.3 is installed OR mozilla-nss-certs-3.29.5-58.3 is installed OR mozilla-nss-certs-32bit-3.29.5-58.3 is installed OR mozilla-nss-sysinit-3.29.5-58.3 is installed OR mozilla-nss-sysinit-32bit-3.29.5-58.3 is installed OR mozilla-nss-tools-3.29.5-58.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libpoppler-glib8-0.43.0-16.5 is installed OR libpoppler-qt4-4-0.43.0-16.5 is installed OR libpoppler60-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed OR poppler-qt-0.43.0-16.5 is installed OR poppler-tools-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND autofs-5.0.9-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-7-4 is installed OR kgraft-patch-3_12_69-60_64_32-xen-7-4 is installed OR kgraft-patch-SLE12-SP1_Update_13-7-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cups-1.7.5-12 is installed OR cups-client-1.7.5-12 is installed OR cups-libs-1.7.5-12 is installed OR cups-libs-32bit-1.7.5-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information qemu-2.6.2-41.43 is installed OR qemu-block-curl-2.6.2-41.43 is installed OR qemu-block-rbd-2.6.2-41.43 is installed OR qemu-block-ssh-2.6.2-41.43 is installed OR qemu-guest-agent-2.6.2-41.43 is installed OR qemu-ipxe-1.0.0-41.43 is installed OR qemu-kvm-2.6.2-41.43 is installed OR qemu-lang-2.6.2-41.43 is installed OR qemu-seabios-1.9.1-41.43 is installed OR qemu-sgabios-8-41.43 is installed OR qemu-tools-2.6.2-41.43 is installed OR qemu-vgabios-1.9.1-41.43 is installed OR qemu-x86-2.6.2-41.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-4 is installed OR openexr-2.1.0-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.4.1-109.101 is installed OR MozillaFirefox-translations-common-68.4.1-109.101 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cyrus-sasl-2.1.26-8.7 is installed OR cyrus-sasl-32bit-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed OR cyrus-sasl-otp-2.1.26-8.7 is installed OR cyrus-sasl-otp-32bit-2.1.26-8.7 is installed OR cyrus-sasl-plain-2.1.26-8.7 is installed OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed OR cyrus-sasl-sqlauxprop-2.1.26-8.7 is installed OR cyrus-sasl-sqlauxprop-32bit-2.1.26-8.7 is installed OR libsasl2-3-2.1.26-8.7 is installed OR libsasl2-3-32bit-2.1.26-8.7 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND ucode-intel-20201027-3.51 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information PackageKit-1.1.10-4.10 is installed OR PackageKit-gstreamer-plugin-1.1.10-4.10 is installed OR PackageKit-gtk3-module-1.1.10-4.10 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-actionpack-4_2-4.2.2-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libipa_hbac0-1.13.4-34.23 is installed OR libsss_idmap0-1.13.4-34.23 is installed OR libsss_sudo-1.13.4-34.23 is installed OR python-sssd-config-1.13.4-34.23 is installed OR sssd-1.13.4-34.23 is installed OR sssd-32bit-1.13.4-34.23 is installed OR sssd-ad-1.13.4-34.23 is installed OR sssd-ipa-1.13.4-34.23 is installed OR sssd-krb5-1.13.4-34.23 is installed OR sssd-krb5-common-1.13.4-34.23 is installed OR sssd-ldap-1.13.4-34.23 is installed OR sssd-proxy-1.13.4-34.23 is installed OR sssd-tools-1.13.4-34.23 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.3.0-109.98 is installed OR MozillaFirefox-translations-common-68.3.0-109.98 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-requests-2.20.1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information dnsmasq-2.78-18.12 is installed OR dnsmasq-utils-2.78-18.12 is installed
BACK