Bugzilla – Bug 1215278
VUL-0: CVE-2023-23583: ucode-intel: Intel CPU can be made to deadlock or privilege escalate
Last modified: 2024-05-17 12:10:51 UTC
CRD: 2023-11-14
uploaded paper to embargoed gitlab wiki: https://gitlab.suse.de/security/spec2021/-/wikis/home
affected, already fixed: Raptor Lake Alder Lake Sapphire Rapids affected, not yet fixed, to be fixed Nov 14 2023: Ice Lake Tiger Lake Rocket Lake ICX-SP ICX-D
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00950.html is public
SUSE-SU-2023:4442-1: An update that solves one vulnerability can now be installed. Category: security (important) Bug References: 1215278 CVE References: CVE-2023-23583 Sources used: SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): ucode-intel-20231113-128.1 SUSE Linux Enterprise High Performance Computing 12 SP5 (src): ucode-intel-20231113-128.1 SUSE Linux Enterprise Server 12 SP5 (src): ucode-intel-20231113-128.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:4441-1: An update that solves one vulnerability can now be installed. Category: security (important) Bug References: 1215278 CVE References: CVE-2023-23583 Sources used: SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (src): ucode-intel-20231113-150100.3.228.1 SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (src): ucode-intel-20231113-150100.3.228.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 (src): ucode-intel-20231113-150100.3.228.1 SUSE CaaS Platform 4.0 (src): ucode-intel-20231113-150100.3.228.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:4440-1: An update that solves one vulnerability can now be installed. Category: security (important) Bug References: 1215278 CVE References: CVE-2023-23583 Sources used: openSUSE Leap Micro 5.3 (src): ucode-intel-20231113-150200.32.1 openSUSE Leap Micro 5.4 (src): ucode-intel-20231113-150200.32.1 openSUSE Leap 15.4 (src): ucode-intel-20231113-150200.32.1 openSUSE Leap 15.5 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro for Rancher 5.3 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro 5.3 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro for Rancher 5.4 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro 5.4 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro 5.5 (src): ucode-intel-20231113-150200.32.1 Basesystem Module 15-SP4 (src): ucode-intel-20231113-150200.32.1 Basesystem Module 15-SP5 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): ucode-intel-20231113-150200.32.1 SUSE Manager Proxy 4.2 (src): ucode-intel-20231113-150200.32.1 SUSE Manager Retail Branch Server 4.2 (src): ucode-intel-20231113-150200.32.1 SUSE Manager Server 4.2 (src): ucode-intel-20231113-150200.32.1 SUSE Enterprise Storage 7.1 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro 5.1 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro 5.2 (src): ucode-intel-20231113-150200.32.1 SUSE Linux Enterprise Micro for Rancher 5.2 (src): ucode-intel-20231113-150200.32.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
This is an autogenerated message for OBS integration: This bug (1215278) was mentioned in https://build.opensuse.org/request/show/1126540 Factory / ucode-intel
researcher article https://lock.cmpxchg8b.com/reptar.html
SUSE-SU-2023:4493-1: An update that solves one vulnerability can now be installed. Category: security (important) Bug References: 1215278 CVE References: CVE-2023-23583 Sources used: SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): ucode-intel-20231114-131.1 SUSE Linux Enterprise High Performance Computing 12 SP5 (src): ucode-intel-20231114-131.1 SUSE Linux Enterprise Server 12 SP5 (src): ucode-intel-20231114-131.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:4500-1: An update that solves one vulnerability can now be installed. Category: security (important) Bug References: 1215278 CVE References: CVE-2023-23583 Sources used: openSUSE Leap Micro 5.3 (src): ucode-intel-20231114-150200.35.1 openSUSE Leap Micro 5.4 (src): ucode-intel-20231114-150200.35.1 openSUSE Leap 15.4 (src): ucode-intel-20231114-150200.35.1 openSUSE Leap 15.5 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro for Rancher 5.3 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro 5.3 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro for Rancher 5.4 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro 5.4 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro 5.5 (src): ucode-intel-20231114-150200.35.1 Basesystem Module 15-SP4 (src): ucode-intel-20231114-150200.35.1 Basesystem Module 15-SP5 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): ucode-intel-20231114-150200.35.1 SUSE Enterprise Storage 7.1 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro 5.1 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro 5.2 (src): ucode-intel-20231114-150200.35.1 SUSE Linux Enterprise Micro for Rancher 5.2 (src): ucode-intel-20231114-150200.35.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:4510-1: An update that solves one vulnerability can now be installed. Category: security (important) Bug References: 1215278 CVE References: CVE-2023-23583 Sources used: SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (src): ucode-intel-20231114-150100.3.231.1 SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (src): ucode-intel-20231114-150100.3.231.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 (src): ucode-intel-20231114-150100.3.231.1 SUSE CaaS Platform 4.0 (src): ucode-intel-20231114-150100.3.231.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
done