OVAL Reference oval:org.opensuse.security:def:60194 - CERT Civis.Net

Oval Definition:

oval:org.opensuse.security:def:60194

Revision Date:	2020-12-01	Version:	1
Title:	Security update for ucode-intel (Moderate)
Description:	This update for ucode-intel fixes the following issues: - Updated Intel CPU Microcode to 20201118 official release. (bsc#1178971) - Removed TGL/06-8c-01/80 due to functional issues with some OEM platforms. - CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) INTEL-SA-00389 (bsc#1170446) - CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594) - CVE-2020-8696: Vector Register Sampling Active INTEL-SA-00381 (bsc#1173592) - Release notes: - Security updates for [INTEL-SA-00381](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html). - Security updates for [INTEL-SA-00389](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00389.html). - Update for functional issues. Refer to [Second Generation Intel? Xeon? Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338848) for details. - Update for functional issues. Refer to [Intel? Xeon? Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/613537) for details. - Update for functional issues. Refer to [Intel? Xeon? Processor E5 v3 Product Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e5-v3-spec-update.html?wapkw=processor+spec+update+e5) for details. - Update for functional issues. Refer to [10th Gen Intel? Core™ Processor Families Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/10th-gen-core-families-specification-update.html) for details. - Update for functional issues. Refer to [8th and 9th Gen Intel? Core™ Processor Family Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/8th-gen-core-spec-update.html) for details. - Update for functional issues. Refer to [7th Gen and 8th Gen (U Quad-Core) Intel? Processor Families Specification Update](https://www.intel.com/content/www/us/en/processors/core/7th-gen-core-family-spec-update.html) for details. - Update for functional issues. Refer to [6th Gen Intel? Processor Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/332689) for details. - Update for functional issues. Refer to [Intel? Xeon? E3-1200 v6 Processor Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e3-1200v6-spec-update.html) for details. - Update for functional issues. Refer to [Intel? Xeon? E-2100 and E-2200 Processor Family Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-e-2100-specification-update.html) for details. ### New Platforms \| Processor \| Stepping \| F-M-S/PI \| Old Ver \| New Ver \| Products \|:---------------\|:---------\|:------------\|:---------\|:---------\|:--------- \| CPX-SP \| A1 \| 06-55-0b/bf \| \| 0700001e \| Xeon Scalable Gen3 \| LKF \| B2/B3 \| 06-8a-01/10 \| \| 00000028 \| Core w/Hybrid Technology \| TGL \| B1 \| 06-8c-01/80 \| \| 00000068 \| Core Gen11 Mobile \| CML-H \| R1 \| 06-a5-02/20 \| \| 000000e0 \| Core Gen10 Mobile \| CML-S62 \| G1 \| 06-a5-03/22 \| \| 000000e0 \| Core Gen10 \| CML-S102 \| Q0 \| 06-a5-05/22 \| \| 000000e0 \| Core Gen10 \| CML-U62 V2 \| K0 \| 06-a6-01/80 \| \| 000000e0 \| Core Gen10 Mobile ### Updated Platforms \| Processor \| Stepping \| F-M-S/PI \| Old Ver \| New Ver \| Products \|:---------------\|:---------\|:------------\|:---------\|:---------\|:--------- \| HSX-E/EP \| Cx/M1 \| 06-3f-02/6f \| 00000043 \| 00000044 \| Core Gen4 X series; Xeon E5 v3 \| SKL-U/Y \| D0 \| 06-4e-03/c0 \| 000000d6 \| 000000e2 \| Core Gen6 Mobile \| SKL-U23e \| K1 \| 06-4e-03/c0 \| 000000d6 \| 000000e2 \| Core Gen6 Mobile \| SKX-SP \| B1 \| 06-55-03/97 \| 01000157 \| 01000159 \| Xeon Scalable \| SKX-SP \| H0/M0/U0 \| 06-55-04/b7 \| 02006906 \| 02006a08 \| Xeon Scalable \| SKX-D \| M1 \| 06-55-04/b7 \| 02006906 \| 02006a08 \| Xeon D-21xx \| CLX-SP \| B0 \| 06-55-06/bf \| 04002f01 \| 04003003 \| Xeon Scalable Gen2 \| CLX-SP \| B1 \| 06-55-07/bf \| 05002f01 \| 05003003 \| Xeon Scalable Gen2 \| APL \| D0 \| 06-5c-09/03 \| 00000038 \| 00000040 \| Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx \| APL \| E0 \| 06-5c-0a/03 \| 00000016 \| 0000001e \| Atom x5-E39xx \| SKL-H/S \| R0/N0 \| 06-5e-03/36 \| 000000d6 \| 000000e2 \| Core Gen6; Xeon E3 v5 \| GKL-R \| R0 \| 06-7a-08/01 \| 00000016 \| 00000018 \| Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 \| ICL-U/Y \| D1 \| 06-7e-05/80 \| 00000078 \| 000000a0 \| Core Gen10 Mobile \| AML-Y22 \| H0 \| 06-8e-09/10 \| 000000d6 \| 000000de \| Core Gen8 Mobile \| KBL-U/Y \| H0 \| 06-8e-09/c0 \| 000000d6 \| 000000de \| Core Gen7 Mobile \| CFL-U43e \| D0 \| 06-8e-0a/c0 \| 000000d6 \| 000000e0 \| Core Gen8 Mobile \| WHL-U \| W0 \| 06-8e-0b/d0 \| 000000d6 \| 000000de \| Core Gen8 Mobile \| AML-Y42 \| V0 \| 06-8e-0c/94 \| 000000d6 \| 000000de \| Core Gen10 Mobile \| CML-Y42 \| V0 \| 06-8e-0c/94 \| 000000d6 \| 000000de \| Core Gen10 Mobile \| WHL-U \| V0 \| 06-8e-0c/94 \| 000000d6 \| 000000de \| Core Gen8 Mobile \| KBL-G/H/S/E3 \| B0 \| 06-9e-09/2a \| 000000d6 \| 000000de \| Core Gen7; Xeon E3 v6 \| CFL-H/S/E3 \| U0 \| 06-9e-0a/22 \| 000000d6 \| 000000de \| Core Gen8 Desktop, Mobile, Xeon E \| CFL-S \| B0 \| 06-9e-0b/02 \| 000000d6 \| 000000de \| Core Gen8 \| CFL-H/S \| P0 \| 06-9e-0c/22 \| 000000d6 \| 000000de \| Core Gen9 \| CFL-H \| R0 \| 06-9e-0d/22 \| 000000d6 \| 000000de \| Core Gen9 Mobile \| CML-U62 \| A0 \| 06-a6-00/80 \| 000000ca \| 000000e0 \| Core Gen10 Mobile
Family:	unix	Class:	patch
Status:		Reference(s):	1056996 1069257 1085415 1100078 1113975 1117951 1127080 1153674 1154212 1155094 1158442 1159913 1162224 1162367 1162825 1165631 1165894 1170446 1170603 1173592 1173594 1178971 CVE-2008-0928 CVE-2008-1945 CVE-2008-2382 CVE-2008-4539 CVE-2008-4989 CVE-2010-0407 CVE-2010-4531 CVE-2011-4128 CVE-2012-0390 CVE-2012-1569 CVE-2012-1573 CVE-2012-3515 CVE-2013-4148 CVE-2013-4149 CVE-2013-4150 CVE-2013-4151 CVE-2013-4526 CVE-2013-4527 CVE-2013-4529 CVE-2013-4530 CVE-2013-4531 CVE-2013-4533 CVE-2013-4534 CVE-2013-4535 CVE-2013-4536 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2013-4540 CVE-2013-4541 CVE-2013-4542 CVE-2013-4544 CVE-2013-6399 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-0092 CVE-2014-0142 CVE-2014-0143 CVE-2014-0144 CVE-2014-0145 CVE-2014-0146 CVE-2014-0147 CVE-2014-0150 CVE-2014-0182 CVE-2014-0222 CVE-2014-0223 CVE-2014-1959 CVE-2014-2707 CVE-2014-3461 CVE-2014-3466 CVE-2014-3640 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2014-7840 CVE-2014-8106 CVE-2014-8564 CVE-2015-0294 CVE-2015-1779 CVE-2015-2265 CVE-2015-3209 CVE-2015-3258 CVE-2015-3279 CVE-2015-3456 CVE-2015-3622 CVE-2015-4037 CVE-2015-5154 CVE-2015-5225 CVE-2015-5278 CVE-2015-5279 CVE-2015-5745 CVE-2015-6251 CVE-2015-6815 CVE-2015-6855 CVE-2015-7295 CVE-2015-7512 CVE-2015-7549 CVE-2015-8079 CVE-2015-8327 CVE-2015-8345 CVE-2015-8504 CVE-2015-8558 CVE-2015-8560 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-10028 CVE-2016-10109 CVE-2016-10155 CVE-2016-1568 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2198 CVE-2016-3710 CVE-2016-3712 CVE-2016-4002 CVE-2016-4020 CVE-2016-4439 CVE-2016-4441 CVE-2016-4453 CVE-2016-4454 CVE-2016-4952 CVE-2016-4964 CVE-2016-5105 CVE-2016-5106 CVE-2016-5107 CVE-2016-5126 CVE-2016-5238 CVE-2016-5337 CVE-2016-5338 CVE-2016-5403 CVE-2016-6351 CVE-2016-6490 CVE-2016-6833 CVE-2016-6836 CVE-2016-6888 CVE-2016-7116 CVE-2016-7155 CVE-2016-7156 CVE-2016-7157 CVE-2016-7161 CVE-2016-7170 CVE-2016-7421 CVE-2016-7422 CVE-2016-7423 CVE-2016-7444 CVE-2016-7466 CVE-2016-7907 CVE-2016-7908 CVE-2016-7909 CVE-2016-7994 CVE-2016-7995 CVE-2016-8576 CVE-2016-8577 CVE-2016-8578 CVE-2016-8610 CVE-2016-8667 CVE-2016-8668 CVE-2016-8669 CVE-2016-8909 CVE-2016-8910 CVE-2016-9101 CVE-2016-9102 CVE-2016-9103 CVE-2016-9104 CVE-2016-9105 CVE-2016-9106 CVE-2016-9381 CVE-2016-9602 CVE-2016-9776 CVE-2016-9845 CVE-2016-9846 CVE-2016-9907 CVE-2016-9908 CVE-2016-9911 CVE-2016-9912 CVE-2016-9913 CVE-2016-9921 CVE-2016-9922 CVE-2016-9923 CVE-2017-12194 CVE-2017-14107 CVE-2017-16899 CVE-2017-2615 CVE-2017-2620 CVE-2017-2630 CVE-2017-2633 CVE-2017-5335 CVE-2017-5336 CVE-2017-5337 CVE-2017-5525 CVE-2017-5526 CVE-2017-5552 CVE-2017-5578 CVE-2017-5579 CVE-2017-5667 CVE-2017-5856 CVE-2017-5857 CVE-2017-5898 CVE-2017-5931 CVE-2017-5973 CVE-2017-5987 CVE-2017-6058 CVE-2017-6505 CVE-2017-7471 CVE-2017-7493 CVE-2017-8112 CVE-2017-8309 CVE-2017-8379 CVE-2017-8380 CVE-2017-9503 CVE-2017-9524 CVE-2019-14287 CVE-2019-1559 CVE-2019-18348 CVE-2019-2933 CVE-2019-2945 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-5108 CVE-2019-9674 CVE-2020-12268 CVE-2020-1749 CVE-2020-8492 CVE-2020-8695 CVE-2020-8696 CVE-2020-8698 SUSE-SU-2017:2546-1 SUSE-SU-2018:0231-1 SUSE-SU-2018:0877-1 SUSE-SU-2019:0803-1 SUSE-SU-2019:2666-1 SUSE-SU-2020:0051-1 SUSE-SU-2020:1212-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information dovecot23-2.3.3-lp150.11 is installed OR dovecot23-backend-mysql-2.3.3-lp150.11 is installed OR dovecot23-backend-pgsql-2.3.3-lp150.11 is installed OR dovecot23-backend-sqlite-2.3.3-lp150.11 is installed OR dovecot23-devel-2.3.3-lp150.11 is installed OR dovecot23-fts-2.3.3-lp150.11 is installed OR dovecot23-fts-lucene-2.3.3-lp150.11 is installed OR dovecot23-fts-solr-2.3.3-lp150.11 is installed OR dovecot23-fts-squat-2.3.3-lp150.11 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libBasicUsageEnvironment1-2019.06.28-lp151.2.3 is installed OR libUsageEnvironment3-2019.06.28-lp151.2.3 is installed OR libgroupsock8-2019.06.28-lp151.2.3 is installed OR libliveMedia66-2019.06.28-lp151.2.3 is installed OR live555-2019.06.28-lp151.2.3 is installed OR live555-devel-2019.06.28-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20201118-13.81 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cups-filters-1.0.58-17 is installed OR cups-filters-cups-browsed-1.0.58-17 is installed OR cups-filters-foomatic-rip-1.0.58-17 is installed OR cups-filters-ghostscript-1.0.58-17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.55-38.44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND yast2-smt-3.0.14-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND sudo-1.8.20p2-3.14 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-2.59 is installed OR libwebkit2gtk-4_0-37-2.28.4-2.59 is installed OR libwebkit2gtk3-lang-2.28.4-2.59 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-2.59 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-2.59 is installed OR webkit2gtk3-2.28.4-2.59 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed