Bug 1170446 - (CVE-2020-8695) VUL-0: CVE-2020-8695: ucode-intel: Intel RAPL sidechannel (SGX part)
(CVE-2020-8695)
VUL-0: CVE-2020-8695: ucode-intel: Intel RAPL sidechannel (SGX part)
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Marcus Meissner
Security Team bot
https://smash.suse.de/issue/258390/
CVSSv3.1:SUSE:CVE-2020-8695:5.3:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-04-24 12:20 UTC by Marcus Meissner
Modified: 2020-12-08 23:25 UTC (History)
5 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 8 Marcus Meissner 2020-11-10 18:09:07 UTC
public via https://platypusattack.com/
Comment 9 Swamp Workflow Management 2020-11-10 23:15:06 UTC
SUSE-SU-2020:3276-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Basesystem 15-SP1 (src):    ucode-intel-20201027-3.33.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 10 Swamp Workflow Management 2020-11-10 23:19:49 UTC
SUSE-SU-2020:3275-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Server for SAP 15 (src):    ucode-intel-20201027-3.51.1
SUSE Linux Enterprise High Performance Computing 15-LTSS (src):    ucode-intel-20201027-3.51.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS (src):    ucode-intel-20201027-3.51.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 11 Swamp Workflow Management 2020-11-10 23:30:41 UTC
SUSE-SU-2020:3274-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 12-SP5 (src):    ucode-intel-20201027-3.20.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 12 Swamp Workflow Management 2020-11-10 23:31:49 UTC
SUSE-SU-2020:3271-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Basesystem 15-SP2 (src):    ucode-intel-20201027-2.7.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 13 Marcus Meissner 2020-11-11 10:29:51 UTC
releasing
Comment 14 OBSbugzilla Bot 2020-11-11 11:10:08 UTC
This is an autogenerated message for OBS integration:
This bug (1170446) was mentioned in
https://build.opensuse.org/request/show/847755 Factory / ucode-intel
Comment 15 Swamp Workflow Management 2020-11-11 14:16:37 UTC
SUSE-SU-2020:14540-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 11-SP4-LTSS (src):    microcode_ctl-1.17-102.83.59.1
SUSE Linux Enterprise Point of Sale 11-SP3 (src):    microcode_ctl-1.17-102.83.59.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 16 Swamp Workflow Management 2020-11-11 14:26:29 UTC
SUSE-SU-2020:3279-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
SUSE OpenStack Cloud Crowbar 9 (src):    ucode-intel-20201027-13.76.1
SUSE OpenStack Cloud Crowbar 8 (src):    ucode-intel-20201027-13.76.1
SUSE OpenStack Cloud 9 (src):    ucode-intel-20201027-13.76.1
SUSE OpenStack Cloud 8 (src):    ucode-intel-20201027-13.76.1
SUSE OpenStack Cloud 7 (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server for SAP 12-SP4 (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server for SAP 12-SP3 (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server for SAP 12-SP2 (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server 12-SP4-LTSS (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server 12-SP3-LTSS (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server 12-SP3-BCL (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server 12-SP2-LTSS (src):    ucode-intel-20201027-13.76.1
SUSE Linux Enterprise Server 12-SP2-BCL (src):    ucode-intel-20201027-13.76.1
SUSE Enterprise Storage 5 (src):    ucode-intel-20201027-13.76.1
HPE Helion Openstack 8 (src):    ucode-intel-20201027-13.76.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 18 Swamp Workflow Management 2020-11-14 11:24:47 UTC
openSUSE-SU-2020:1915-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
openSUSE Leap 15.1 (src):    ucode-intel-20201027-lp151.2.30.1
Comment 19 Swamp Workflow Management 2020-11-14 23:20:54 UTC
openSUSE-SU-2020:1923-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173594
CVE References: CVE-2020-8695,CVE-2020-8698
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    ucode-intel-20201027-lp152.2.4.1
Comment 20 Swamp Workflow Management 2020-11-19 14:20:09 UTC
SUSE-SU-2020:3372-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173592,1173594
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Basesystem 15-SP1 (src):    ucode-intel-20201110-3.39.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 21 Swamp Workflow Management 2020-11-19 14:25:16 UTC
SUSE-SU-2020:3373-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173592,1173594
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Basesystem 15-SP2 (src):    ucode-intel-20201110-2.10.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 22 Swamp Workflow Management 2020-11-19 14:35:53 UTC
SUSE-SU-2020:14546-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173592,1173594
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 11-SP4-LTSS (src):    microcode_ctl-1.17-102.83.62.1
SUSE Linux Enterprise Point of Sale 11-SP3 (src):    microcode_ctl-1.17-102.83.62.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 23 Swamp Workflow Management 2020-11-19 14:40:56 UTC
SUSE-SU-2020:3374-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173592,1173594
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Server for SAP 15 (src):    ucode-intel-20201110-3.55.1
SUSE Linux Enterprise High Performance Computing 15-LTSS (src):    ucode-intel-20201110-3.55.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS (src):    ucode-intel-20201110-3.55.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 24 OBSbugzilla Bot 2020-11-19 16:30:06 UTC
This is an autogenerated message for OBS integration:
This bug (1170446) was mentioned in
https://build.opensuse.org/request/show/849467 Factory / ucode-intel
Comment 26 Swamp Workflow Management 2020-11-20 14:21:39 UTC
SUSE-SU-2020:3457-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1170446,1173592,1173594
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 12-SP5 (src):    ucode-intel-20201110-3.23.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 27 Swamp Workflow Management 2020-11-23 17:19:14 UTC
SUSE-SU-2020:3484-1: An update that solves 15 vulnerabilities and has 75 fixes is now available.

Category: security (important)
Bug References: 1055014,1058115,1061843,1065600,1065729,1066382,1077428,1112178,1131277,1134760,1140683,1163592,1167030,1168468,1170415,1170446,1170630,1171558,1171675,1172538,1172873,1173432,1174748,1175306,1175520,1175721,1176354,1176381,1176382,1176400,1176485,1176560,1176713,1176723,1176855,1176907,1176946,1176983,1177027,1177086,1177101,1177258,1177271,1177281,1177340,1177410,1177411,1177470,1177511,1177513,1177685,1177687,1177703,1177719,1177724,1177725,1177740,1177749,1177750,1177753,1177754,1177755,1177766,1177819,1177820,1177855,1177856,1177861,1178003,1178027,1178123,1178166,1178182,1178185,1178187,1178188,1178202,1178234,1178330,1178393,1178589,1178591,1178622,1178686,1178700,1178765,1178782,1178838,1178878,927455
CVE References: CVE-2020-0430,CVE-2020-12351,CVE-2020-12352,CVE-2020-14351,CVE-2020-16120,CVE-2020-2521,CVE-2020-25212,CVE-2020-25285,CVE-2020-25645,CVE-2020-25656,CVE-2020-25668,CVE-2020-25669,CVE-2020-25704,CVE-2020-25705,CVE-2020-8694
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Public Cloud 15-SP1 (src):    kernel-azure-4.12.14-8.52.1, kernel-source-azure-4.12.14-8.52.1, kernel-syms-azure-4.12.14-8.52.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 28 Swamp Workflow Management 2020-11-25 14:17:57 UTC
SUSE-SU-2020:3512-1: An update that solves 11 vulnerabilities and has 74 fixes is now available.

Category: security (important)
Bug References: 1055014,1058115,1061843,1065600,1065729,1066382,1077428,1112178,1114648,1131277,1134760,1140683,1152624,1157424,1163592,1167030,1170415,1170446,1171558,1172538,1172757,1173432,1174748,1175306,1175520,1175721,1176354,1176400,1176485,1176560,1176713,1176723,1176855,1176907,1176946,1176983,1177086,1177101,1177271,1177281,1177359,1177410,1177411,1177470,1177685,1177687,1177703,1177719,1177724,1177725,1177729,1177740,1177749,1177750,1177753,1177754,1177755,1177762,1177766,1177819,1177820,1177855,1177856,1177861,1178003,1178027,1178123,1178166,1178185,1178187,1178188,1178202,1178234,1178330,1178393,1178589,1178591,1178607,1178622,1178686,1178700,1178765,1178782,927455,936888
CVE References: CVE-2020-0430,CVE-2020-12351,CVE-2020-12352,CVE-2020-14351,CVE-2020-16120,CVE-2020-25285,CVE-2020-25656,CVE-2020-25668,CVE-2020-25704,CVE-2020-25705,CVE-2020-8694
JIRA References: 
Sources used:
SUSE Linux Enterprise Real Time Extension 12-SP5 (src):    kernel-rt-4.12.14-10.22.1, kernel-rt_debug-4.12.14-10.22.1, kernel-source-rt-4.12.14-10.22.1, kernel-syms-rt-4.12.14-10.22.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 29 Swamp Workflow Management 2020-11-25 14:28:04 UTC
SUSE-SU-2020:3513-1: An update that solves 11 vulnerabilities and has 62 fixes is now available.

Category: security (important)
Bug References: 1055014,1058115,1061843,1065600,1065729,1066382,1077428,1112178,1131277,1134760,1163592,1167030,1170415,1170446,1171558,1172873,1173432,1174748,1175306,1175721,1176354,1176485,1176560,1176713,1176723,1176855,1176907,1176983,1177086,1177101,1177271,1177281,1177410,1177411,1177470,1177685,1177687,1177703,1177719,1177724,1177725,1177740,1177749,1177750,1177753,1177754,1177755,1177762,1177766,1177819,1177820,1177855,1177856,1177861,1178003,1178027,1178123,1178166,1178185,1178187,1178188,1178202,1178234,1178330,1178393,1178589,1178591,1178622,1178686,1178765,1178782,1178838,927455
CVE References: CVE-2020-0430,CVE-2020-12351,CVE-2020-12352,CVE-2020-14351,CVE-2020-16120,CVE-2020-25285,CVE-2020-25656,CVE-2020-25668,CVE-2020-25704,CVE-2020-25705,CVE-2020-8694
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Realtime 15-SP1 (src):    kernel-rt-4.12.14-14.41.2, kernel-rt_debug-4.12.14-14.41.2, kernel-source-rt-4.12.14-14.41.2, kernel-syms-rt-4.12.14-14.41.2

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 30 Swamp Workflow Management 2020-11-25 17:19:45 UTC
SUSE-SU-2020:3522-1: An update that solves 12 vulnerabilities and has 103 fixes is now available.

Category: security (important)
Bug References: 1055014,1055186,1061843,1065600,1065729,1066382,1077428,1129923,1134760,1149032,1152489,1162702,1163592,1164648,1165692,1166146,1166166,1167030,1170415,1170446,1171073,1171688,1172873,1174003,1174098,1174748,1174969,1175052,1175306,1175621,1175721,1175749,1175807,1175898,1176180,1176354,1176400,1176485,1176564,1176713,1176907,1176983,1177086,1177090,1177109,1177271,1177281,1177353,1177410,1177411,1177470,1177617,1177681,1177683,1177687,1177694,1177697,1177698,1177703,1177719,1177724,1177725,1177726,1177727,1177729,1177739,1177749,1177750,1177754,1177755,1177765,1177766,1177799,1177801,1177814,1177817,1177820,1177854,1177855,1177856,1177861,1178002,1178079,1178123,1178166,1178173,1178175,1178176,1178177,1178183,1178184,1178185,1178186,1178190,1178191,1178246,1178255,1178304,1178307,1178330,1178393,1178395,1178461,1178579,1178581,1178584,1178585,1178589,1178591,1178622,1178659,1178661,1178686,1178700,1178782
CVE References: CVE-2020-12351,CVE-2020-12352,CVE-2020-14351,CVE-2020-16120,CVE-2020-24490,CVE-2020-25285,CVE-2020-25656,CVE-2020-25668,CVE-2020-25704,CVE-2020-25705,CVE-2020-28974,CVE-2020-8694
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Realtime 15-SP2 (src):    kernel-rt-5.3.18-16.1, kernel-rt_debug-5.3.18-16.1, kernel-source-rt-5.3.18-16.1, kernel-syms-rt-5.3.18-16.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 31 Swamp Workflow Management 2020-11-25 17:30:11 UTC
SUSE-SU-2020:3514-1: An update that solves three vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1170446,1173592,1173594,1178971
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
SUSE OpenStack Cloud Crowbar 9 (src):    ucode-intel-20201118-13.81.1
SUSE OpenStack Cloud Crowbar 8 (src):    ucode-intel-20201118-13.81.1
SUSE OpenStack Cloud 9 (src):    ucode-intel-20201118-13.81.1
SUSE OpenStack Cloud 8 (src):    ucode-intel-20201118-13.81.1
SUSE OpenStack Cloud 7 (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server for SAP 12-SP4 (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server for SAP 12-SP3 (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server for SAP 12-SP2 (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server 12-SP4-LTSS (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server 12-SP3-LTSS (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server 12-SP3-BCL (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server 12-SP2-LTSS (src):    ucode-intel-20201118-13.81.1
SUSE Linux Enterprise Server 12-SP2-BCL (src):    ucode-intel-20201118-13.81.1
SUSE Enterprise Storage 5 (src):    ucode-intel-20201118-13.81.1
HPE Helion Openstack 8 (src):    ucode-intel-20201118-13.81.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 32 Swamp Workflow Management 2020-11-27 11:19:45 UTC
openSUSE-SU-2020:2075-1: An update that solves three vulnerabilities and has one errata is now available.

Category: security (important)
Bug References: 1170446,1173592,1173594,1178971
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    ucode-intel-20201118-lp152.2.8.1
Comment 33 Swamp Workflow Management 2020-11-28 23:14:39 UTC
openSUSE-SU-2020:2098-1: An update that solves three vulnerabilities and has one errata is now available.

Category: security (important)
Bug References: 1170446,1173592,1173594,1178971
CVE References: CVE-2020-8695,CVE-2020-8696,CVE-2020-8698
JIRA References: 
Sources used:
openSUSE Leap 15.1 (src):    ucode-intel-20201118-lp151.2.33.1
Comment 34 Swamp Workflow Management 2020-12-08 23:16:36 UTC
SUSE-SU-2020:3713-1: An update that solves 15 vulnerabilities, contains one feature and has 71 fixes is now available.

Category: security (important)
Bug References: 1149032,1152489,1153274,1154353,1154852,1155518,1160634,1166146,1166166,1167030,1167773,1170139,1170415,1170446,1171073,1171558,1172873,1174527,1175306,1175918,1176109,1176180,1176200,1176481,1176586,1176855,1176983,1177066,1177070,1177353,1177397,1177666,1177703,1177820,1178123,1178182,1178227,1178286,1178304,1178330,1178393,1178401,1178426,1178461,1178579,1178581,1178584,1178585,1178589,1178591,1178635,1178653,1178659,1178661,1178669,1178686,1178740,1178755,1178762,1178838,1178853,1178886,1179001,1179012,1179014,1179015,1179045,1179076,1179082,1179107,1179140,1179141,1179160,1179201,1179211,1179217,1179419,1179424,1179425,1179426,1179427,1179429,1179432,1179442,1179550,1179802
CVE References: CVE-2020-15436,CVE-2020-15437,CVE-2020-25668,CVE-2020-25669,CVE-2020-25704,CVE-2020-27777,CVE-2020-28368,CVE-2020-28915,CVE-2020-28941,CVE-2020-28974,CVE-2020-29369,CVE-2020-29371,CVE-2020-4788,CVE-2020-8694,CVE-2020-8695
JIRA References: SLE-8449
Sources used:
SUSE Linux Enterprise Module for Public Cloud 15-SP2 (src):    kernel-azure-5.3.18-18.29.1, kernel-source-azure-5.3.18-18.29.1, kernel-syms-azure-5.3.18-18.29.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 35 Swamp Workflow Management 2020-12-08 23:25:14 UTC
SUSE-SU-2020:3715-1: An update that solves 8 vulnerabilities and has 47 fixes is now available.

Category: security (important)
Bug References: 1050549,1058115,1067665,1111666,1112178,1167030,1170139,1170415,1170446,1170630,1172542,1172873,1174726,1175306,1175916,1176109,1176855,1176907,1176983,1177304,1177397,1177703,1177805,1177808,1177809,1177819,1177820,1178123,1178182,1178393,1178589,1178591,1178607,1178635,1178669,1178686,1178700,1178765,1178838,1178853,1178854,1178878,1178886,1178897,1178940,1178962,1179107,1179140,1179211,1179213,1179259,1179424,1179426,1179427,927455
CVE References: CVE-2020-15437,CVE-2020-25668,CVE-2020-25669,CVE-2020-25704,CVE-2020-27777,CVE-2020-28915,CVE-2020-28974,CVE-2020-8694
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 12-SP5 (src):    kernel-azure-4.12.14-16.38.1, kernel-source-azure-4.12.14-16.38.1, kernel-syms-azure-4.12.14-16.38.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.