OVAL Reference oval:org.opensuse.security:def:58376 - CERT Civis.Net

Oval Definition:

oval:org.opensuse.security:def:58376

Revision Date:	2020-12-01	Version:	1
Title:	Security update for ucode-intel (Moderate)
Description:	This update for ucode-intel fixes the following issues: - Updated Intel CPU Microcode to 20201118 official release. (bsc#1178971) - Removed TGL/06-8c-01/80 due to functional issues with some OEM platforms. - CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) INTEL-SA-00389 (bsc#1170446) - CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594) - CVE-2020-8696: Vector Register Sampling Active INTEL-SA-00381 (bsc#1173592) - Release notes: - Security updates for [INTEL-SA-00381](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html). - Security updates for [INTEL-SA-00389](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00389.html). - Update for functional issues. Refer to [Second Generation Intel? Xeon? Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338848) for details. - Update for functional issues. Refer to [Intel? Xeon? Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/613537) for details. - Update for functional issues. Refer to [Intel? Xeon? Processor E5 v3 Product Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e5-v3-spec-update.html?wapkw=processor+spec+update+e5) for details. - Update for functional issues. Refer to [10th Gen Intel? Core™ Processor Families Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/10th-gen-core-families-specification-update.html) for details. - Update for functional issues. Refer to [8th and 9th Gen Intel? Core™ Processor Family Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/8th-gen-core-spec-update.html) for details. - Update for functional issues. Refer to [7th Gen and 8th Gen (U Quad-Core) Intel? Processor Families Specification Update](https://www.intel.com/content/www/us/en/processors/core/7th-gen-core-family-spec-update.html) for details. - Update for functional issues. Refer to [6th Gen Intel? Processor Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/332689) for details. - Update for functional issues. Refer to [Intel? Xeon? E3-1200 v6 Processor Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e3-1200v6-spec-update.html) for details. - Update for functional issues. Refer to [Intel? Xeon? E-2100 and E-2200 Processor Family Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-e-2100-specification-update.html) for details. ### New Platforms \| Processor \| Stepping \| F-M-S/PI \| Old Ver \| New Ver \| Products \|:---------------\|:---------\|:------------\|:---------\|:---------\|:--------- \| CPX-SP \| A1 \| 06-55-0b/bf \| \| 0700001e \| Xeon Scalable Gen3 \| LKF \| B2/B3 \| 06-8a-01/10 \| \| 00000028 \| Core w/Hybrid Technology \| TGL \| B1 \| 06-8c-01/80 \| \| 00000068 \| Core Gen11 Mobile \| CML-H \| R1 \| 06-a5-02/20 \| \| 000000e0 \| Core Gen10 Mobile \| CML-S62 \| G1 \| 06-a5-03/22 \| \| 000000e0 \| Core Gen10 \| CML-S102 \| Q0 \| 06-a5-05/22 \| \| 000000e0 \| Core Gen10 \| CML-U62 V2 \| K0 \| 06-a6-01/80 \| \| 000000e0 \| Core Gen10 Mobile ### Updated Platforms \| Processor \| Stepping \| F-M-S/PI \| Old Ver \| New Ver \| Products \|:---------------\|:---------\|:------------\|:---------\|:---------\|:--------- \| HSX-E/EP \| Cx/M1 \| 06-3f-02/6f \| 00000043 \| 00000044 \| Core Gen4 X series; Xeon E5 v3 \| SKL-U/Y \| D0 \| 06-4e-03/c0 \| 000000d6 \| 000000e2 \| Core Gen6 Mobile \| SKL-U23e \| K1 \| 06-4e-03/c0 \| 000000d6 \| 000000e2 \| Core Gen6 Mobile \| SKX-SP \| B1 \| 06-55-03/97 \| 01000157 \| 01000159 \| Xeon Scalable \| SKX-SP \| H0/M0/U0 \| 06-55-04/b7 \| 02006906 \| 02006a08 \| Xeon Scalable \| SKX-D \| M1 \| 06-55-04/b7 \| 02006906 \| 02006a08 \| Xeon D-21xx \| CLX-SP \| B0 \| 06-55-06/bf \| 04002f01 \| 04003003 \| Xeon Scalable Gen2 \| CLX-SP \| B1 \| 06-55-07/bf \| 05002f01 \| 05003003 \| Xeon Scalable Gen2 \| APL \| D0 \| 06-5c-09/03 \| 00000038 \| 00000040 \| Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx \| APL \| E0 \| 06-5c-0a/03 \| 00000016 \| 0000001e \| Atom x5-E39xx \| SKL-H/S \| R0/N0 \| 06-5e-03/36 \| 000000d6 \| 000000e2 \| Core Gen6; Xeon E3 v5 \| GKL-R \| R0 \| 06-7a-08/01 \| 00000016 \| 00000018 \| Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 \| ICL-U/Y \| D1 \| 06-7e-05/80 \| 00000078 \| 000000a0 \| Core Gen10 Mobile \| AML-Y22 \| H0 \| 06-8e-09/10 \| 000000d6 \| 000000de \| Core Gen8 Mobile \| KBL-U/Y \| H0 \| 06-8e-09/c0 \| 000000d6 \| 000000de \| Core Gen7 Mobile \| CFL-U43e \| D0 \| 06-8e-0a/c0 \| 000000d6 \| 000000e0 \| Core Gen8 Mobile \| WHL-U \| W0 \| 06-8e-0b/d0 \| 000000d6 \| 000000de \| Core Gen8 Mobile \| AML-Y42 \| V0 \| 06-8e-0c/94 \| 000000d6 \| 000000de \| Core Gen10 Mobile \| CML-Y42 \| V0 \| 06-8e-0c/94 \| 000000d6 \| 000000de \| Core Gen10 Mobile \| WHL-U \| V0 \| 06-8e-0c/94 \| 000000d6 \| 000000de \| Core Gen8 Mobile \| KBL-G/H/S/E3 \| B0 \| 06-9e-09/2a \| 000000d6 \| 000000de \| Core Gen7; Xeon E3 v6 \| CFL-H/S/E3 \| U0 \| 06-9e-0a/22 \| 000000d6 \| 000000de \| Core Gen8 Desktop, Mobile, Xeon E \| CFL-S \| B0 \| 06-9e-0b/02 \| 000000d6 \| 000000de \| Core Gen8 \| CFL-H/S \| P0 \| 06-9e-0c/22 \| 000000d6 \| 000000de \| Core Gen9 \| CFL-H \| R0 \| 06-9e-0d/22 \| 000000d6 \| 000000de \| Core Gen9 Mobile \| CML-U62 \| A0 \| 06-a6-00/80 \| 000000ca \| 000000e0 \| Core Gen10 Mobile
Family:	unix	Class:	patch
Status:		Reference(s):	1015187 1016503 1016504 1017081 1017084 1020427 1021741 1025109 1025311 1028184 1028656 1030624 1031142 1032075 1034866 1034908 1035406 1035950 1036211 1037242 1037334 1037336 1038231 1039495 1042159 1042800 1042801 1043073 1043296 1049086 1049825 1068689 1082318 1103098 1104668 1109160 1109893 1110542 1111319 1112039 1112911 1113296 1116995 1118367 1118368 1119947 1120374 1120629 1120630 1120631 1122983 1127155 1128828 1131823 1134226 1137977 1140039 1142614 1144504 1145521 1149458 1151839 1156323 1156324 1156326 1156328 1156329 1162687 1162689 1162691 1168874 1170446 1171740 1173592 1173594 1178971 CVE-2016-10028 CVE-2016-10029 CVE-2016-9602 CVE-2016-9603 CVE-2016-9933 CVE-2017-10978 CVE-2017-10983 CVE-2017-10984 CVE-2017-10985 CVE-2017-10987 CVE-2017-10988 CVE-2017-16852 CVE-2017-5579 CVE-2017-5973 CVE-2017-5987 CVE-2017-6505 CVE-2017-7377 CVE-2017-7471 CVE-2017-7493 CVE-2017-7494 CVE-2017-7718 CVE-2017-7980 CVE-2017-8086 CVE-2017-8112 CVE-2017-8309 CVE-2017-8379 CVE-2017-8380 CVE-2017-9330 CVE-2017-9373 CVE-2017-9374 CVE-2017-9375 CVE-2017-9503 CVE-2018-12539 CVE-2018-1517 CVE-2018-1656 CVE-2018-16884 CVE-2018-18386 CVE-2018-18500 CVE-2018-18501 CVE-2018-18505 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-5391 CVE-2018-5741 CVE-2019-12523 CVE-2019-12526 CVE-2019-12528 CVE-2019-12625 CVE-2019-12900 CVE-2019-18676 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 CVE-2019-9893 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517 CVE-2020-8616 CVE-2020-8617 CVE-2020-8695 CVE-2020-8696 CVE-2020-8698 SUSE-SU-2016:3211-1 SUSE-SU-2017:1392-1 SUSE-SU-2017:1774-1 SUSE-SU-2017:2243-1 SUSE-SU-2017:3215-1 SUSE-SU-2018:2649-1 SUSE-SU-2019:2265-1 SUSE-SU-2019:3066-1 SUSE-SU-2020:0661-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1914-1 SUSE-SU-2020:3514-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libapr-util1-1.6.1-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information GraphicsMagick-1.3.29-lp151.4.6 is installed OR GraphicsMagick-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.6 is installed OR libGraphicsMagick3-config-1.3.29-lp151.4.6 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.6 is installed OR perl-GraphicsMagick-1.3.29-lp151.4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND gd-2.1.0-20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND clamav-0.100.3-33.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information automake-1.13.4-6 is installed OR m4-1.4.16-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.55-38.44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information openssh-7.2p2-74.23 is installed OR openssh-askpass-gnome-7.2p2-74.23 is installed OR openssh-fips-7.2p2-74.23 is installed OR openssh-helpers-7.2p2-74.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libvmtools0-10.3.0-2 is installed OR open-vm-tools-10.3.0-2 is installed OR open-vm-tools-desktop-10.3.0-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND ucode-intel-20201118-13.81 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed