MGASA-2020-0422
- Source
- https://advisories.mageia.org/MGASA-2020-0422.html
- Import Source
- https://advisories.mageia.org/MGASA-2020-0422.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2020-0422
- Related
- Published
- 2020-11-13T21:20:36Z
- Modified
- 2020-11-13T20:37:18Z
- Summary
- Updated microcode package fixes security vulnerabilities
- Details
-
Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2020-8694)
Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. (CVE-2020-8695)
Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2020-8696)
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2020-8698)
- References
-
- https://advisories.mageia.org/MGASA-2020-0422.html
- https://bugs.mageia.org/show_bug.cgi?id=27597
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00389.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html
- https://access.redhat.com/errata/RHSA-2020:5085
- https://bugs.mageia.org/show_bug.cgi?id=26995
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:7 / microcode
Package
- Name
- microcode
- Purl
- pkg:rpm/mageia/microcode?distro=mageia-7