Oval Definition:	oval:org.opensuse.security:def:60789
Revision Date: 2020-12-01 Version: 1 Title: Security update for ucode-intel (Moderate) Description: This update for ucode-intel fixes the following issues: - Intel CPU Microcode updated to 20201027 prerelease - CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446) - CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594) # New Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | TGL | B1 | 06-8c-01/80 | | 00000068 | Core Gen11 Mobile | CPX-SP | A1 | 06-55-0b/bf | | 0700001e | Xeon Scalable Gen3 | CML-H | R1 | 06-a5-02/20 | | 000000e0 | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | | 000000e0 | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | | 000000e0 | Core Gen10 | CML-U62 V2 | K0 | 06-a6-01/80 | | 000000e0 | Core Gen10 Mobile # Updated Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | GKL-R | R0 | 06-7a-08/01 | 00000016 | 00000018 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | SKL-U/Y | D0 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | SKL-U23e | K1 | 06-4e-03/c0 | 000000d6 | 000000e2 | Core Gen6 Mobile | APL | D0 | 06-5c-09/03 | 00000038 | 00000040 | Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx | APL | E0 | 06-5c-0a/03 | 00000016 | 0000001e | Atom x5-E39xx | SKL-H/S | R0/N0 | 06-5e-03/36 | 000000d6 | 000000e2 | Core Gen6; Xeon E3 v5 | HSX-E/EP | Cx/M1 | 06-3f-02/6f | 00000043 | 00000044 | Core Gen4 X series; Xeon E5 v3 | SKX-SP | B1 | 06-55-03/97 | 01000157 | 01000159 | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006906 | 02006a08 | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04002f01 | 04003003 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05002f01 | 05003003 | Xeon Scalable Gen2 | ICL-U/Y | D1 | 06-7e-05/80 | 00000078 | 000000a0 | Core Gen10 Mobile | AML-Y22 | H0 | 06-8e-09/10 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000d6 | 000000de | Core Gen7 Mobile | CFL-U43e | D0 | 06-8e-0a/c0 | 000000d6 | 000000e0 | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000d6 | 000000de | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000d6 | 000000de | Core Gen8 Mobile | KBL-G/H/S/E3 | B0 | 06-9e-09/2a | 000000d6 | 000000de | Core Gen7; Xeon E3 v6 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000d6 | 000000de | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000d6 | 000000de | Core Gen8 | CFL-H/S | P0 | 06-9e-0c/22 | 000000d6 | 000000de | Core Gen9 | CFL-H | R0 | 06-9e-0d/22 | 000000d6 | 000000de | Core Gen9 Mobile | CML-U62 | A0 | 06-a6-00/80 | 000000ca | 000000e0 | Core Gen10 Mobile Family: unix Class: patch Status: Reference(s): 1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1012382 1025108 1038425 1043008 1047281 1053431 1064232 1074235 1075876 1076110 1077717 1080919 1085185 1085657 1088004 1088009 1089525 1090435 1090888 1091171 1092207 1092611 1094244 1094248 1094643 1095453 1096790 1097034 1097140 1097492 1097501 1097551 1097808 1097931 1097961 1098016 1098236 1098425 1098435 1098527 1098599 1099042 1099183 1099279 1099590 1099713 1099732 1099792 1099810 1099918 1099924 1099966 1099993 1100089 1100340 1100416 1100418 1100491 1100843 1101296 1104129 1120374 1121563 1121826 1123755 1124223 1125352 1126056 1126068 1126069 1127153 1127557 1128657 1130230 1130840 1131060 1132348 1132400 1132721 1133185 1137832 1137990 1141853 1149429 1149955 1153238 1154738 1155419 1160471 1160895 1160912 1162388 1162423 1165439 1170441 1170446 1173274 1173594 1174091 1174701 1176012 1176072 1176382 1176409 1176412 1176896 1176931 955942 959933 983922 CVE-2016-2830 CVE-2016-5289 CVE-2016-5292 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2017-10053 CVE-2017-10067 CVE-2017-10074 CVE-2017-10078 CVE-2017-10081 CVE-2017-10087 CVE-2017-10089 CVE-2017-10090 CVE-2017-10096 CVE-2017-10101 CVE-2017-10102 CVE-2017-10105 CVE-2017-10107 CVE-2017-10108 CVE-2017-10109 CVE-2017-10110 CVE-2017-10111 CVE-2017-10115 CVE-2017-10116 CVE-2017-10125 CVE-2017-10243 CVE-2017-7789 CVE-2018-13053 CVE-2018-13405 CVE-2018-13406 CVE-2018-14647 CVE-2018-20852 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2018-6954 CVE-2018-9385 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-12749 CVE-2019-15681 CVE-2019-15690 CVE-2019-15903 CVE-2019-16056 CVE-2019-16935 CVE-2019-18901 CVE-2019-20788 CVE-2019-20907 CVE-2019-3842 CVE-2019-3880 CVE-2019-6133 CVE-2019-6454 CVE-2019-6465 CVE-2019-9947 CVE-2020-0429 CVE-2020-0431 CVE-2020-14381 CVE-2020-14386 CVE-2020-14392 CVE-2020-14393 CVE-2020-14422 CVE-2020-1747 CVE-2020-25212 CVE-2020-2574 CVE-2020-8695 CVE-2020-8698 SUSE-SU-2017:2263-1 SUSE-SU-2018:2051-1 SUSE-SU-2019:2035-1 SUSE-SU-2019:2872-1 SUSE-SU-2020:0527-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:1285-1 SUSE-SU-2020:2661-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:3279-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-lp150.2.9 is installed OR libopenssl-1_0_0-devel-32bit-1.0.2p-lp150.2.9 is installed OR libopenssl1_0_0-1.0.2p-lp150.2.9 is installed OR libopenssl1_0_0-32bit-1.0.2p-lp150.2.9 is installed OR libopenssl1_0_0-hmac-1.0.2p-lp150.2.9 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2p-lp150.2.9 is installed OR libopenssl1_0_0-steam-1.0.2p-lp150.2.9 is installed OR libopenssl1_0_0-steam-32bit-1.0.2p-lp150.2.9 is installed OR openssl-1_0_0-1.0.2p-lp150.2.9 is installed OR openssl-1_0_0-cavs-1.0.2p-lp150.2.9 is installed OR openssl-1_0_0-doc-1.0.2p-lp150.2.9 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND system-user-root-20190513-lp151.3.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information MozillaThunderbird-68.11.0-lp152.2.7 is installed OR MozillaThunderbird-translations-common-68.11.0-lp152.2.7 is installed OR MozillaThunderbird-translations-other-68.11.0-lp152.2.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.10-30.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information dbus-1-1.8.22-29.17 is installed OR dbus-1-x11-1.8.22-29.17 is installed OR libdbus-1-3-1.8.22-29.17 is installed OR libdbus-1-3-32bit-1.8.22-29.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information python-PyYAML-5.1.2-26.12 is installed OR python3-PyYAML-5.1.2-26.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libdcerpc-binding0-4.6.16+git.154.2998451b912-3.40 is installed OR libdcerpc-binding0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libdcerpc0-4.6.16+git.154.2998451b912-3.40 is installed OR libdcerpc0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-krb5pac0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-krb5pac0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-nbt0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-nbt0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-standard0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-standard0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libnetapi0-4.6.16+git.154.2998451b912-3.40 is installed OR libnetapi0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-credentials0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-credentials0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-errors0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-errors0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-hostconfig0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-hostconfig0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-passdb0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-passdb0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-util0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-util0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamdb0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamdb0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbclient0-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbclient0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbconf0-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbconf0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbldap0-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbldap0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libtevent-util0-4.6.16+git.154.2998451b912-3.40 is installed OR libtevent-util0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libwbclient0-4.6.16+git.154.2998451b912-3.40 is installed OR libwbclient0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR samba-4.6.16+git.154.2998451b912-3.40 is installed OR samba-client-4.6.16+git.154.2998451b912-3.40 is installed OR samba-client-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR samba-doc-4.6.16+git.154.2998451b912-3.40 is installed OR samba-libs-4.6.16+git.154.2998451b912-3.40 is installed OR samba-libs-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR samba-winbind-4.6.16+git.154.2998451b912-3.40 is installed OR samba-winbind-32bit-4.6.16+git.154.2998451b912-3.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ibus-chewing-1.4.14-4 is installed OR ibus-pinyin-1.5.0-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information MozillaFirefox-78.0.1-112.3 is installed OR MozillaFirefox-branding-SLE-78-35.3 is installed OR MozillaFirefox-devel-78.0.1-112.3 is installed OR MozillaFirefox-translations-common-78.0.1-112.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ucode-intel-20201027-13.76 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information MozillaFirefox-78.0.1-112.3 is installed OR MozillaFirefox-branding-SLE-78-35.3 is installed OR MozillaFirefox-devel-78.0.1-112.3 is installed OR MozillaFirefox-translations-common-78.0.1-112.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND nodejs6-6.17.1-11.33 is installed
BACK