Bug 1129231 - VUL-0: ucode-intel,microcode_ctl: Intel firmware 20190312 release
Summary: VUL-0: ucode-intel,microcode_ctl: Intel firmware 20190312 release
Status: RESOLVED FIXED
Alias: None
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Marcus Meissner
QA Contact: Security Team bot
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-03-14 12:11 UTC by Marcus Meissner
Modified: 2019-09-19 22:50 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2019-03-14 12:11:48 UTC
https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files

Intel published a 20190312 Microcode bundle  , which is I think QSR 2018.4.


== 20190312 Release ==
-- Updates upon 20180807 release --
Processor             Identifier     Version       Products
Model        Stepping F-MO-S/PI      Old->New
---- new platforms ----------------------------------------
AML-Y22      H0       6-8e-9/10           0000009e Core Gen8 Mobile
WHL-U        W0       6-8e-b/d0           000000a4 Core Gen8 Mobile
WHL-U        V0       6-8e-d/94           000000b2 Core Gen8 Mobile
CFL-S        P0       6-9e-c/22           000000a2 Core Gen9 Desktop
CFL-H        R0       6-9e-d/22           000000b0 Core Gen9 Mobile
---- updated platforms ------------------------------------
HSX-E/EP     Cx/M1    6-3f-2/6f 0000003d->00000041 Core Gen4 X series; Xeon E5 v3
HSX-EX       E0       6-3f-4/80 00000012->00000013 Xeon E7 v3
SKX-SP       H0/M0/U0 6-55-4/b7 0200004d->0000005a Xeon Scalable
SKX-D        M1       6-55-4/b7 0200004d->0000005a Xeon D-21xx
BDX-DE       V1       6-56-2/10 00000017->00000019 Xeon D-1520/40
BDX-DE       V2/3     6-56-3/10 07000013->07000016 Xeon D-1518/19/21/27/28/31/33/37/41/48, Pentium D1507/08/09/17/19
BDX-DE       Y0       6-56-4/10 0f000012->0f000014 Xeon D-1557/59/67/71/77/81/87
BDX-NS       A0       6-56-5/10 0e00000a->0e00000c Xeon D-1513N/23/33/43/53
APL          D0       6-5c-9/03 00000032->00000036 Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx
APL          E0       6-5c-a/03 0000000c->00000010 Atom x5/7-E39xx
GLK          B0       6-7a-1/01 00000028->0000002c Pentium Silver N/J5xxx, Celeron N/J4xxx
KBL-U/Y      H0       6-8e-9/c0 0000008e->0000009a Core Gen7 Mobile
CFL-U43e     D0       6-8e-a/c0 00000096->0000009e Core Gen8 Mobile
KBL-H/S/E3   B0       6-9e-9/2a 0000008e->0000009a Core Gen7; Xeon E3 v6
CFL-H/S/E3   U0       6-9e-a/22 00000096->000000aa Core Gen8 Desktop, Mobile, Xeon E
CFL-S B0 6-9e-b/02 0000008e->000000aa Core Gen8
Comment 1 Swamp Workflow Management 2019-03-14 17:50:06 UTC
This is an autogenerated message for OBS integration:
This bug (1129231) was mentioned in
https://build.opensuse.org/request/show/685087 Factory / ucode-intel
Comment 4 Swamp Workflow Management 2019-03-22 19:14:42 UTC
SUSE-SU-2019:0712-1: An update that contains security fixes can now be installed.

Category: security (moderate)
Bug References: 1129231
CVE References: 
Sources used:
SUSE Linux Enterprise Module for Basesystem 15 (src):    ucode-intel-20190312-3.12.1
Comment 5 Swamp Workflow Management 2019-03-25 20:19:25 UTC
SUSE-SU-2019:0736-1: An update that contains security fixes can now be installed.

Category: security (moderate)
Bug References: 1129231
CVE References: 
Sources used:
SUSE OpenStack Cloud 7 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server for SAP 12-SP2 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server for SAP 12-SP1 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP4 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP3 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP2-LTSS (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP2-BCL (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP1-LTSS (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-LTSS (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Desktop 12-SP4 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Desktop 12-SP3 (src):    ucode-intel-20190312-13.38.1
SUSE Enterprise Storage 4 (src):    ucode-intel-20190312-13.38.1
SUSE CaaS Platform 3.0 (src):    ucode-intel-20190312-13.38.1

*** NOTE: This information is not intended to be used for external
    communication, because this may only be a partial fix.
    If you have questions please reach out to maintenance coordination.
Comment 6 Swamp Workflow Management 2019-03-25 20:25:06 UTC
SUSE-SU-2019:0736-1: An update that contains security fixes can now be installed.

Category: security (moderate)
Bug References: 1129231
CVE References: 
Sources used:
SUSE OpenStack Cloud 7 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server for SAP 12-SP2 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server for SAP 12-SP1 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP4 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP3 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP2-LTSS (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP2-BCL (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-SP1-LTSS (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Server 12-LTSS (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Desktop 12-SP4 (src):    ucode-intel-20190312-13.38.1
SUSE Linux Enterprise Desktop 12-SP3 (src):    ucode-intel-20190312-13.38.1
SUSE Enterprise Storage 4 (src):    ucode-intel-20190312-13.38.1
SUSE CaaS Platform 3.0 (src):    ucode-intel-20190312-13.38.1

*** NOTE: This information is not intended to be used for external
    communication, because this may only be a partial fix.
    If you have questions please reach out to maintenance coordination.
Comment 7 Swamp Workflow Management 2019-03-30 11:20:54 UTC
openSUSE-SU-2019:1084-1: An update that contains security fixes can now be installed.

Category: security (moderate)
Bug References: 1129231
CVE References: 
Sources used:
openSUSE Leap 15.0 (src):    ucode-intel-20190312-lp150.2.14.1

*** NOTE: This information is not intended to be used for external
    communication, because this may only be a partial fix.
    If you have questions please reach out to maintenance coordination.
Comment 8 Marcus Meissner 2019-04-01 09:10:48 UTC
released
Comment 9 Swamp Workflow Management 2019-05-15 06:30:22 UTC
This is an autogenerated message for OBS integration:
This bug (1129231) was mentioned in
https://build.opensuse.org/request/show/703053 42.3 / ucode-intel
Comment 11 Marcus Meissner 2019-05-15 07:53:06 UTC
it was the release going along with yesterdays cpu issues.

We shipped releases for it stamped 20190507, but it contains these.
Comment 12 Swamp Workflow Management 2019-05-20 13:10:18 UTC
openSUSE-SU-2019:1408-1: An update that fixes four vulnerabilities is now available.

Category: security (important)
Bug References: 1104479,1111331,1129231
CVE References: CVE-2018-12126,CVE-2018-12127,CVE-2018-12130,CVE-2019-11091
Sources used:
openSUSE Leap 42.3 (src):    ucode-intel-20190514-32.1