MGASA-2024-0028

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2024-0028.html

Import Source

https://advisories.mageia.org/MGASA-2024-0028.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2024-0028

Related

CVE-2023-23583

Published

2024-02-09T01:34:03Z

Modified

2024-02-08T15:43:56Z

Summary

Updated microcode fixes bugs and a security vulnerability

Details

The updated package contains microcode updates for Intel and AMD CPUs, including a fix for a security vulnerability: Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access. (CVE-2023-23583)

References

https://advisories.mageia.org/MGASA-2024-0028.html
https://bugs.mageia.org/show_bug.cgi?id=32528
https://lwn.net/Articles/951472/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00950.html

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

MGASA-2024-0028

Affected packages