MGASA-2024-0377

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2024-0377.html

Import Source

https://advisories.mageia.org/MGASA-2024-0377.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2024-0377

Related

Published

2024-11-27T19:59:10Z

Modified

2024-11-27T19:28:31Z

Summary

Updated microcode packages fix security vulnerabilities

Details

Improper Finite State Machines (FSMs) in the Hardware logic in some 4th and 5th Generation IntelÂ® XeonÂ® Processors may allow an authorized user to potentially enable denial of service via local access. (CVE-2024-21853) Improper conditions check in some IntelÂ® XeonÂ® processor memory controller configurations when using IntelÂ® SGX may allow a privileged user to potentially enable escalation of privilege via local access. (CVE-2024-23918) Incorrect default permissions in some IntelÂ® XeonÂ® processor memory controller configurations when using IntelÂ® SGX may allow a privileged user to potentially enable escalation of privilege via local access. (CVE-2024-21820)

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

MGASA-2024-0377

Affected packages