Oval Definition:oval:org.opensuse.security:def:60175
Revision Date:2020-12-01Version:1
Title:Security update for ucode-intel (Moderate)
Description:

This update for ucode-intel fixes the following issues:

- Intel CPU Microcode updated to 20201027 prerelease - CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446) - CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594)

# New Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | TGL | B1 | 06-8c-01/80 | | 00000068 | Core Gen11 Mobile | CPX-SP | A1 | 06-55-0b/bf | | 0700001e | Xeon Scalable Gen3 | CML-H | R1 | 06-a5-02/20 | | 000000e0 | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | | 000000e0 | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | | 000000e0 | Core Gen10 | CML-U62 V2 | K0 | 06-a6-01/80 | | 000000e0 | Core Gen10 Mobile # Updated Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | GKL-R | R0 | 06-7a-08/01 | 00000016 | 00000018 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | SKL-U/Y | D0 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | SKL-U23e | K1 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | APL | D0 | 06-5c-09/03 | 00000038 | 00000040 | Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx | APL | E0 | 06-5c-0a/03 | 00000016 | 0000001e | Atom x5-E39xx | SKL-H/S | R0/N0 | 06-5e-03/36 | 000000d6 | 000000e2 | Core Gen6; Xeon E3 v5 | HSX-E/EP | Cx/M1 | 06-3f-02/6f | 00000043 | 00000044 | Core Gen4 X series; Xeon E5 v3 | SKX-SP | B1 | 06-55-03/97 | 01000157 | 01000159 | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04002f01 | 04003003 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05002f01 | 05003003 | Xeon Scalable Gen2 | ICL-U/Y | D1 | 06-7e-05/80 | 00000078 | 000000a0 | Core Gen10 Mobile | AML-Y22 | H0 | 06-8e-09/10 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000d6 | 000000de | Core Gen7 Mobile | CFL-U43e | D0 | 06-8e-0a/c0 | 000000d6 | 000000e0 | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000d6 | 000000de | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-G/H/S/E3 | B0 | 06-9e-09/2a | 000000d6 | 000000de | Core Gen7; Xeon E3 v6 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000d6 | 000000de | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000d6 | 000000de | Core Gen8 | CFL-H/S | P0 | 06-9e-0c/22 | 000000d6 | 000000de | Core Gen9 | CFL-H | R0 | 06-9e-0d/22 | 000000d6 | 000000de | Core Gen9 Mobile | CML-U62 | A0 | 06-a6-00/80 | 000000ca | 000000e0 | Core Gen10 Mobile
Family:unixClass:patch
Status:Reference(s):1012382
1015336
1015337
1015340
1019683
1019695
1020413
1020645
1023175
1027260
1027457
1031492
1042286
1043083
1046264
1047487
1048916
1050549
1053431
1060031
1065600
1066223
1068032
1069666
1070805
1078355
1079935
1081741
1084191
1086095
1086423
1086652
1091405
1093158
1094244
1094823
1094973
1096242
1096281
1099523
1099810
1100105
1101557
1102439
1102660
1102875
1102877
1102879
1102882
1102896
1103097
1103156
1103257
1103624
1104098
1104731
1105428
1106061
1106105
1106237
1106240
1106929
1107385
1107866
1108145
1108240
1109272
1109330
1109695
1109806
1110286
1111062
1111174
1111622
1111809
1112246
1112963
1113412
1113766
1114190
1114417
1114475
1114648
1114674
1114763
1114839
1114871
1114893
1115431
1115433
1115440
1115482
1115709
1116027
1116183
1116285
1116336
1116345
1116497
1116653
1116841
1116924
1116950
1116962
1117108
1117162
1117165
1117186
1117562
1117645
1117744
1117951
1118152
1118316
1118319
1118505
1118790
1118798
1118915
1118922
1118926
1118930
1118936
1119204
1119680
1119714
1119877
1119946
1119967
1119970
1120017
1120046
1120722
1120743
1120758
1120767
1120902
1120950
1121239
1121240
1121241
1121242
1121275
1121621
1121726
1122650
1122651
1122668
1122779
1122885
1123321
1123323
1123357
1123886
1123933
1124166
1124728
1124732
1124735
1124775
1124777
1124780
1124811
1125000
1125014
1125446
1125794
1125796
1125808
1125809
1125810
1125892
1158809
1160163
1160594
1160764
1161779
1163922
1170446
1173594
1177914
985031
CVE-2006-4484
CVE-2009-0758
CVE-2009-2625
CVE-2009-3560
CVE-2009-3720
CVE-2010-2244
CVE-2011-1002
CVE-2012-0876
CVE-2012-1147
CVE-2012-1148
CVE-2012-6702
CVE-2014-5461
CVE-2015-1283
CVE-2015-4047
CVE-2016-0718
CVE-2016-5300
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10078
CVE-2017-10081
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10115
CVE-2017-10116
CVE-2017-10125
CVE-2017-10243
CVE-2017-14604
CVE-2018-1000872
CVE-2018-1050
CVE-2018-1120
CVE-2018-16862
CVE-2018-16884
CVE-2018-18074
CVE-2018-18311
CVE-2018-19407
CVE-2018-19824
CVE-2018-19985
CVE-2018-20169
CVE-2018-5391
CVE-2018-9568
CVE-2019-1551
CVE-2019-3459
CVE-2019-3460
CVE-2019-6974
CVE-2019-7221
CVE-2019-7222
CVE-2020-15999
CVE-2020-8013
CVE-2020-8695
CVE-2020-8698
SUSE-SU-2017:2263-1
SUSE-SU-2018:0754-1
SUSE-SU-2018:2058-1
SUSE-SU-2019:0391-1
SUSE-SU-2019:0541-1
SUSE-SU-2019:2264-1
SUSE-SU-2020:0545-1
SUSE-SU-2020:0555-1
SUSE-SU-2020:2998-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND wget-1.19.5-lp150.7 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • kernel-debug-4.12.14-lp151.28.10 is installed
  • OR kernel-debug-base-4.12.14-lp151.28.10 is installed
  • OR kernel-debug-devel-4.12.14-lp151.28.10 is installed
  • OR kernel-default-4.12.14-lp151.28.10 is installed
  • OR kernel-default-base-4.12.14-lp151.28.10 is installed
  • OR kernel-default-devel-4.12.14-lp151.28.10 is installed
  • OR kernel-devel-4.12.14-lp151.28.10 is installed
  • OR kernel-docs-4.12.14-lp151.28.10 is installed
  • OR kernel-docs-html-4.12.14-lp151.28.10 is installed
  • OR kernel-kvmsmall-4.12.14-lp151.28.10 is installed
  • OR kernel-kvmsmall-base-4.12.14-lp151.28.10 is installed
  • OR kernel-kvmsmall-devel-4.12.14-lp151.28.10 is installed
  • OR kernel-macros-4.12.14-lp151.28.10 is installed
  • OR kernel-obs-build-4.12.14-lp151.28.10 is installed
  • OR kernel-obs-qa-4.12.14-lp151.28.10 is installed
  • OR kernel-source-4.12.14-lp151.28.10 is installed
  • OR kernel-source-vanilla-4.12.14-lp151.28.10 is installed
  • OR kernel-syms-4.12.14-lp151.28.10 is installed
  • OR kernel-vanilla-4.12.14-lp151.28.10 is installed
  • OR kernel-vanilla-base-4.12.14-lp151.28.10 is installed
  • OR kernel-vanilla-devel-4.12.14-lp151.28.10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND ucode-intel-20201027-13.76 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • avahi-0.6.32-30 is installed
  • OR avahi-lang-0.6.32-30 is installed
  • OR avahi-utils-0.6.32-30 is installed
  • OR libavahi-client3-0.6.32-30 is installed
  • OR libavahi-client3-32bit-0.6.32-30 is installed
  • OR libavahi-common3-0.6.32-30 is installed
  • OR libavahi-common3-32bit-0.6.32-30 is installed
  • OR libavahi-core7-0.6.32-30 is installed
  • OR libdns_sd-0.6.32-30 is installed
  • OR libdns_sd-32bit-0.6.32-30 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libdcerpc0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libdcerpc0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-krb5pac0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-nbt0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-standard0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-standard0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libnetapi0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libnetapi0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-credentials0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-errors0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-hostconfig0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-passdb0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-util0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-util0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamdb0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamdb0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbclient0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbclient0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbconf0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbconf0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbldap0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbldap0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libtevent-util0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libtevent-util0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libwbclient0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libwbclient0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-client-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-client-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-doc-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-libs-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-libs-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-winbind-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-winbind-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libvirt-3.3.0-5.40 is installed
  • OR libvirt-admin-3.3.0-5.40 is installed
  • OR libvirt-client-3.3.0-5.40 is installed
  • OR libvirt-daemon-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-hooks-3.3.0-5.40 is installed
  • OR libvirt-daemon-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-xen-3.3.0-5.40 is installed
  • OR libvirt-doc-3.3.0-5.40 is installed
  • OR libvirt-libs-3.3.0-5.40 is installed
  • OR libvirt-lock-sanlock-3.3.0-5.40 is installed
  • OR libvirt-nss-3.3.0-5.40 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • freetype2-2.6.3-7.18 is installed
  • OR ft2demos-2.6.3-7.18 is installed
  • OR libfreetype6-2.6.3-7.18 is installed
  • OR libfreetype6-32bit-2.6.3-7.18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • dovecot22-2.2.31-19.11 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.11 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.11 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND autofs-5.0.9-28.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-ipaddress-1.0.22-3.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND python-PyKMIP-0.6.0-3.3 is installed
  • BACK