UBUNTU-CVE-2021-0146

See a problem?

Source

https://ubuntu.com/security/notices/UBUNTU-CVE-2021-0146

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2021/UBUNTU-CVE-2021-0146.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2021-0146

Related

Published

2021-11-17T20:15:00Z

Modified

2021-11-17T20:15:00Z

Severity

6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
7.1 (High) CVSS_V3 - CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

References

Affected packages

Ubuntu:Pro:14.04:LTS / intel-microcode

Package

Name: intel-microcode

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.20130906.1ubuntu2

1.20130906.1ubuntu3

2.*

2.20140122.1

2.20140430.1ubuntu1

2.20140624-t-1ubuntu2

3.*

3.20180108.0~ubuntu14.04.2

3.20180108.0+really20170707ubuntu14.04.1

3.20180312.0~ubuntu14.04.1

3.20180425.1~ubuntu0.14.04.1

3.20180425.1~ubuntu0.14.04.2

3.20180807a.0ubuntu0.14.04.1

3.20190514.0ubuntu0.14.04.1

3.20190514.0ubuntu0.14.04.2

3.20190618.0ubuntu0.14.04.1

3.20191112-0ubuntu0.14.04.2

3.20191115.1ubuntu0.14.04.1

3.20191115.1ubuntu0.14.04.2

3.20200609.0ubuntu0.14.04.0

3.20200609.0ubuntu0.14.04.1

3.20201110.0ubuntu0.14.04.1

3.20201110.0ubuntu0.14.04.2

3.20210608.0ubuntu0.14.04.1+esm1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / intel-microcode

Package

Name: intel-microcode
Purl: pkg:deb/ubuntu/intel-microcode@3.20220510.0ubuntu0.16.04.1+esm1?arch=src?distro=esm-infra/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.20220510.0ubuntu0.16.04.1+esm1

Affected versions

3.*

3.20150121.1

3.20151106.1

3.20170707.1~ubuntu16.04.0

3.20180108.0~ubuntu16.04.2

3.20180108.0+really20170707ubuntu16.04.1

3.20180312.0~ubuntu16.04.1

3.20180425.1~ubuntu0.16.04.1

3.20180425.1~ubuntu0.16.04.2

3.20180807a.0ubuntu0.16.04.1

3.20190514.0ubuntu0.16.04.1

3.20190514.0ubuntu0.16.04.2

3.20190618.0ubuntu0.16.04.1

3.20191112-0ubuntu0.16.04.2

3.20191115.1ubuntu0.16.04.1

3.20191115.1ubuntu0.16.04.2

3.20200609.0ubuntu0.16.04.0

3.20200609.0ubuntu0.16.04.1

3.20201110.0ubuntu0.16.04.1

3.20201110.0ubuntu0.16.04.2

3.20210216.0ubuntu0.16.04.1

3.20210608.0ubuntu0.16.04.1+esm1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "intel-microcode": "3.20220510.0ubuntu0.16.04.1+esm1"
        }
    ]
}

Ubuntu:18.04:LTS / intel-microcode

Package

Name: intel-microcode
Purl: pkg:deb/ubuntu/intel-microcode@3.20220510.0ubuntu0.18.04.1?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.20220510.0ubuntu0.18.04.1

Affected versions

3.*

3.20170707.1

3.20171117.1

3.20180108.1

3.20180108.1+really20171117.1

3.20180312.0~ubuntu18.04.1

3.20180425.1~ubuntu0.18.04.1

3.20180425.1~ubuntu0.18.04.2

3.20180807a.0ubuntu0.18.04.1

3.20190514.0ubuntu0.18.04.2

3.20190514.0ubuntu0.18.04.3

3.20190618.0ubuntu0.18.04.1

3.20191112-0ubuntu0.18.04.2

3.20191115.1ubuntu0.18.04.1

3.20191115.1ubuntu0.18.04.2

3.20200609.0ubuntu0.18.04.0

3.20200609.0ubuntu0.18.04.1

3.20201110.0ubuntu0.18.04.1

3.20201110.0ubuntu0.18.04.2

3.20210216.0ubuntu0.18.04.1

3.20210608.0ubuntu0.18.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "intel-microcode": "3.20220510.0ubuntu0.18.04.1"
        }
    ]
}

Ubuntu:20.04:LTS / intel-microcode

Package

Name: intel-microcode
Purl: pkg:deb/ubuntu/intel-microcode@3.20220510.0ubuntu0.20.04.1?arch=src?distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.20220510.0ubuntu0.20.04.1

Affected versions

3.*

3.20190918.1ubuntu1

3.20191115.1ubuntu1

3.20191115.1ubuntu2

3.20191115.1ubuntu3

3.20200609.0ubuntu0.20.04.0

3.20200609.0ubuntu0.20.04.1

3.20200609.0ubuntu0.20.04.2

3.20201110.0ubuntu0.20.04.1

3.20201110.0ubuntu0.20.04.2

3.20210216.0ubuntu0.20.04.1

3.20210608.0ubuntu0.20.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "intel-microcode": "3.20220510.0ubuntu0.20.04.1"
        }
    ]
}

Ubuntu:22.04:LTS / intel-microcode

Package

Name: intel-microcode
Purl: pkg:deb/ubuntu/intel-microcode@3.20220510.0ubuntu0.22.04.1?arch=src?distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.20220510.0ubuntu0.22.04.1

Affected versions

3.*

3.20210608.2ubuntu1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "intel-microcode": "3.20220510.0ubuntu0.22.04.1"
        }
    ]
}