Bug#1068083: bullseye-pu: package intel-microcode/3.20240312.1~deb11u1

Sat, 30 Mar 2024 03:54:23 -0700 

Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian....@packages.debian.org
Usertags: pu

[ Reason ]

As requested by the security team, I would like to bring the microcode
update level for Intel processors in Bullseye and Bookworm to match what
we have in Sid and Trixie.  This is the bug report for Bullseye, a
separate one will be filled for Bookmorm.

This fixes:
* Several CVEs in many Intel processors
  - Mitigations for INTEL-SA-INTEL-SA-00972 (CVE-2023-39368)
  - Mitigations for INTEL-SA-INTEL-SA-00982 (CVE-2023-38575)
  - Mitigations for INTEL-SA-INTEL-SA-00898 (CVE-2023-28746), aka RFDS
  - Mitigations for INTEL-SA-INTEL-SA-00960 (CVE-2023-22655), aka TECRA
  - Mitigations for INTEL-SA-INTEL-SA-01045 (CVE-2023-43490)
* Other unspecified functional issues on many processors

There are no releavant issues reported on this microcode update,
considering the version of intel-microcode already available as security
updates for bookworm and bullseye.

[ Impact ]

If this update is not approved, owners of most recent "client" Intel
processors and a few server processors will depend on UEFI updates to be
protected against RFDS as well as the other issues listed above.

[ Tests ]

There were no bug reports from users of Debian sid or Trixie, these
packages have been tested there since 2024-03-13 (sid), 2024-03-18
(trixie).

[ Risks ]

Unknown, but not believed to be any different from other Intel microcode
updates.

Linux kernel updates related to the RFDS microcode update fixes are
either already available in Bookworm and Bullseye, or have already been
requested as spu's.

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable

[ Changes ]

As per the debdiff, only documentation changes, package documentation
changes, and the binary blob change from upstream.

Diffstat:
 b/changelog            |   77 +++++++++++++++++++++++++++++++++++++++
 b/debian/changelog     |   89 +++++++++++++++++++++++++++++++++++++++++++++
 b/intel-ucode/06-55-03 |binary
 b/intel-ucode/06-55-06 |binary
 b/intel-ucode/06-55-07 |binary
 b/intel-ucode/06-55-0b |binary
 b/intel-ucode/06-56-05 |binary
 b/intel-ucode/06-5f-01 |binary
 b/intel-ucode/06-6a-06 |binary
 b/intel-ucode/06-6c-01 |binary
 b/intel-ucode/06-7a-01 |binary
 b/intel-ucode/06-7a-08 |binary
 b/intel-ucode/06-7e-05 |binary
 b/intel-ucode/06-8c-01 |binary
 b/intel-ucode/06-8c-02 |binary
 b/intel-ucode/06-8d-01 |binary
 b/intel-ucode/06-8e-0c |binary
 b/intel-ucode/06-8f-05 |binary
 b/intel-ucode/06-8f-06 |binary
 b/intel-ucode/06-8f-07 |binary
 b/intel-ucode/06-8f-08 |binary
 b/intel-ucode/06-96-01 |binary
 b/intel-ucode/06-97-02 |binary
 b/intel-ucode/06-97-05 |binary
 b/intel-ucode/06-9a-03 |binary
 b/intel-ucode/06-9a-04 |binary
 b/intel-ucode/06-9c-00 |binary
 b/intel-ucode/06-9e-09 |binary
 b/intel-ucode/06-9e-0a |binary
 b/intel-ucode/06-9e-0c |binary
 b/intel-ucode/06-9e-0d |binary
 b/intel-ucode/06-a5-02 |binary
 b/intel-ucode/06-a5-03 |binary
 b/intel-ucode/06-a5-05 |binary
 b/intel-ucode/06-a6-00 |binary
 b/intel-ucode/06-a6-01 |binary
 b/intel-ucode/06-a7-01 |binary
 b/intel-ucode/06-aa-04 |binary
 b/intel-ucode/06-b7-01 |binary
 b/intel-ucode/06-ba-02 |binary
 b/intel-ucode/06-ba-03 |binary
 b/intel-ucode/06-ba-08 |binary
 b/intel-ucode/06-be-00 |binary
 b/intel-ucode/06-bf-02 |binary
 b/intel-ucode/06-bf-05 |binary
 b/intel-ucode/06-cf-01 |binary
 b/intel-ucode/06-cf-02 |binary
 b/releasenote.md       |   96 +++++++++++++++++++++++++++++++++++++++++++++++++
 49 files changed, 262 insertions(+)

[ Other info ]

The package version with "~" is needed to guarantee smooth updates to
the next debian release.

-- 
  Henrique Holschuh

diff --git a/changelog b/changelog
index cbf9f66..fe44e7e 100644
--- a/changelog
+++ b/changelog
@@ -1,3 +1,80 @@
+2024-03-12:
+  * New upstream microcode datafile 20240312
+    - Mitigations for INTEL-SA-INTEL-SA-00972 (CVE-2023-39368):
+      Protection mechanism failure of bus lock regulator for some Intel
+      Processors may allow an unauthenticated user to potentially enable
+      denial of service via network access.
+    - Mitigations for INTEL-SA-INTEL-SA-00982 (CVE-2023-38575):
+      Non-transparent sharing of return predictor targets between contexts in
+      some Intel Processors may allow an authorized user to potentially
+      enable information disclosure via local access.  Affects SGX as well.
+    - Mitigations for INTEL-SA-INTEL-SA-00898 (CVE-2023-28746), aka RFDS:
+      Information exposure through microarchitectural state after transient
+      execution from some register files for some Intel Atom Processors and
+      E-cores of Intel Core Processors may allow an authenticated user to
+      potentially enable information disclosure via local access.  Enhances
+      VERW instruction to clear stale register buffers.  Affects SGX as well.
+      Requires kernel update to be effective.
+    - Mitigations for INTEL-SA-INTEL-SA-00960 (CVE-2023-22655), aka TECRA:
+      Protection mechanism failure in some 3rd and 4th Generation Intel Xeon
+      Processors when using Intel SGX or Intel TDX may allow a privileged
+      user to potentially enable escalation of privilege via local access.
+      NOTE: effective only when loaded by firmware.  Allows SMM firmware to
+      attack SGX/TDX.
+    - Mitigations for INTEL-SA-INTEL-SA-01045 (CVE-2023-43490):
+      Incorrect calculation in microcode keying mechanism for some Intel
+      Xeon D Processors with Intel SGX may allow a privileged user to
+      potentially enable information disclosure via local access.
+  * Fixes for other unspecified functional issues on many processors
+  * Updated microcodes:
+    sig 0x00050653, pf_mask 0x97, 2023-07-28, rev 0x1000191, size 36864
+    sig 0x00050656, pf_mask 0xbf, 2023-07-28, rev 0x4003605, size 38912
+    sig 0x00050657, pf_mask 0xbf, 2023-07-28, rev 0x5003605, size 37888
+    sig 0x0005065b, pf_mask 0xbf, 2023-08-03, rev 0x7002802, size 30720
+    sig 0x00050665, pf_mask 0x10, 2023-08-03, rev 0xe000015, size 23552
+    sig 0x000506f1, pf_mask 0x01, 2023-10-05, rev 0x003e, size 11264
+    sig 0x000606a6, pf_mask 0x87, 2023-09-14, rev 0xd0003d1, size 307200
+    sig 0x000606c1, pf_mask 0x10, 2023-12-05, rev 0x1000290, size 299008
+    sig 0x000706a1, pf_mask 0x01, 2023-08-25, rev 0x0040, size 76800
+    sig 0x000706a8, pf_mask 0x01, 2023-08-25, rev 0x0024, size 76800
+    sig 0x000706e5, pf_mask 0x80, 2023-09-14, rev 0x00c4, size 114688
+    sig 0x000806c1, pf_mask 0x80, 2023-09-13, rev 0x00b6, size 111616
+    sig 0x000806c2, pf_mask 0xc2, 2023-09-13, rev 0x0036, size 98304
+    sig 0x000806d1, pf_mask 0xc2, 2023-09-13, rev 0x0050, size 104448
+    sig 0x000806ec, pf_mask 0x94, 2023-07-16, rev 0x00fa, size 106496
+    sig 0x000806f8, pf_mask 0x87, 2024-01-03, rev 0x2b000590, size 579584
+    sig 0x000806f7, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x000806f6, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x000806f5, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x000806f4, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x00090661, pf_mask 0x01, 2023-09-26, rev 0x0019, size 20480
+    sig 0x00090672, pf_mask 0x07, 2023-09-19, rev 0x0034, size 224256
+    sig 0x00090675, pf_mask 0x07, 2023-09-19, rev 0x0034
+    sig 0x000b06f2, pf_mask 0x07, 2023-09-19, rev 0x0034
+    sig 0x000b06f5, pf_mask 0x07, 2023-09-19, rev 0x0034
+    sig 0x000906a3, pf_mask 0x80, 2023-09-19, rev 0x0432, size 222208
+    sig 0x000906a4, pf_mask 0x80, 2023-09-19, rev 0x0432
+    sig 0x000906c0, pf_mask 0x01, 2023-09-26, rev 0x24000026, size 20480
+    sig 0x000906e9, pf_mask 0x2a, 2023-09-28, rev 0x00f8, size 108544
+    sig 0x000906ea, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 105472
+    sig 0x000906ec, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 106496
+    sig 0x000906ed, pf_mask 0x22, 2023-07-27, rev 0x00fc, size 106496
+    sig 0x000a0652, pf_mask 0x20, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0653, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0655, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0660, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0661, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 96256
+    sig 0x000a0671, pf_mask 0x02, 2023-09-14, rev 0x005e, size 108544
+    sig 0x000b0671, pf_mask 0x32, 2023-12-14, rev 0x0122, size 215040
+    sig 0x000b06a2, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
+    sig 0x000b06a3, pf_mask 0xe0, 2023-12-07, rev 0x4121
+    sig 0x000b06e0, pf_mask 0x11, 2023-09-25, rev 0x0015, size 138240
+  * New microcodes:
+    sig 0x000a06a4, pf_mask 0xe6, 2024-01-03, rev 0x001c, size 136192
+    sig 0x000b06a8, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
+    sig 0x000c06f2, pf_mask 0x87, 2023-11-20, rev 0x21000200, size 549888
+    sig 0x000c06f1, pf_mask 0x87, 2023-11-20, rev 0x21000200
+
 2023-11-14:
   * New upstream microcode datafile 20231114
     Mitigations for "reptar", INTEL-SA-00950 (CVE-2023-23583)
diff --git a/debian/changelog b/debian/changelog
index fa702cb..317fad2 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,92 @@
+intel-microcode (3.20240312.1~deb11u1) bullseye; urgency=medium
+
+  * Backport to Debian Bullseye
+  * debian/control: revert non-free-firmware change
+
+ -- Henrique de Moraes Holschuh <h...@debian.org>  Sat, 30 Mar 2024 07:06:46 -0300
+
+intel-microcode (3.20240312.1) unstable; urgency=medium
+
+  * New upstream microcode datafile 20240312 (closes: #1066108)
+    - Mitigations for INTEL-SA-INTEL-SA-00972 (CVE-2023-39368):
+      Protection mechanism failure of bus lock regulator for some Intel
+      Processors may allow an unauthenticated user to potentially enable
+      denial of service via network access.
+    - Mitigations for INTEL-SA-INTEL-SA-00982 (CVE-2023-38575):
+      Non-transparent sharing of return predictor targets between contexts in
+      some Intel Processors may allow an authorized user to potentially
+      enable information disclosure via local access.  Affects SGX as well.
+    - Mitigations for INTEL-SA-INTEL-SA-00898 (CVE-2023-28746), aka RFDS:
+      Information exposure through microarchitectural state after transient
+      execution from some register files for some Intel Atom Processors and
+      E-cores of Intel Core Processors may allow an authenticated user to
+      potentially enable information disclosure via local access.  Enhances
+      VERW instruction to clear stale register buffers.  Affects SGX as well.
+      Requires kernel update to be effective.
+    - Mitigations for INTEL-SA-INTEL-SA-00960 (CVE-2023-22655), aka TECRA:
+      Protection mechanism failure in some 3rd and 4th Generation Intel Xeon
+      Processors when using Intel SGX or Intel TDX may allow a privileged
+      user to potentially enable escalation of privilege via local access.
+      NOTE: effective only when loaded by firmware.  Allows SMM firmware to
+      attack SGX/TDX.
+    - Mitigations for INTEL-SA-INTEL-SA-01045 (CVE-2023-43490):
+      Incorrect calculation in microcode keying mechanism for some Intel
+      Xeon D Processors with Intel SGX may allow a privileged user to
+      potentially enable information disclosure via local access.
+  * Fixes for other unspecified functional issues on many processors
+  * Updated microcodes:
+    sig 0x00050653, pf_mask 0x97, 2023-07-28, rev 0x1000191, size 36864
+    sig 0x00050656, pf_mask 0xbf, 2023-07-28, rev 0x4003605, size 38912
+    sig 0x00050657, pf_mask 0xbf, 2023-07-28, rev 0x5003605, size 37888
+    sig 0x0005065b, pf_mask 0xbf, 2023-08-03, rev 0x7002802, size 30720
+    sig 0x00050665, pf_mask 0x10, 2023-08-03, rev 0xe000015, size 23552
+    sig 0x000506f1, pf_mask 0x01, 2023-10-05, rev 0x003e, size 11264
+    sig 0x000606a6, pf_mask 0x87, 2023-09-14, rev 0xd0003d1, size 307200
+    sig 0x000606c1, pf_mask 0x10, 2023-12-05, rev 0x1000290, size 299008
+    sig 0x000706a1, pf_mask 0x01, 2023-08-25, rev 0x0040, size 76800
+    sig 0x000706a8, pf_mask 0x01, 2023-08-25, rev 0x0024, size 76800
+    sig 0x000706e5, pf_mask 0x80, 2023-09-14, rev 0x00c4, size 114688
+    sig 0x000806c1, pf_mask 0x80, 2023-09-13, rev 0x00b6, size 111616
+    sig 0x000806c2, pf_mask 0xc2, 2023-09-13, rev 0x0036, size 98304
+    sig 0x000806d1, pf_mask 0xc2, 2023-09-13, rev 0x0050, size 104448
+    sig 0x000806ec, pf_mask 0x94, 2023-07-16, rev 0x00fa, size 106496
+    sig 0x000806f8, pf_mask 0x87, 2024-01-03, rev 0x2b000590, size 579584
+    sig 0x000806f7, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x000806f6, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x000806f5, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x000806f4, pf_mask 0x87, 2024-01-03, rev 0x2b000590
+    sig 0x00090661, pf_mask 0x01, 2023-09-26, rev 0x0019, size 20480
+    sig 0x00090672, pf_mask 0x07, 2023-09-19, rev 0x0034, size 224256
+    sig 0x00090675, pf_mask 0x07, 2023-09-19, rev 0x0034
+    sig 0x000b06f2, pf_mask 0x07, 2023-09-19, rev 0x0034
+    sig 0x000b06f5, pf_mask 0x07, 2023-09-19, rev 0x0034
+    sig 0x000906a3, pf_mask 0x80, 2023-09-19, rev 0x0432, size 222208
+    sig 0x000906a4, pf_mask 0x80, 2023-09-19, rev 0x0432
+    sig 0x000906c0, pf_mask 0x01, 2023-09-26, rev 0x24000026, size 20480
+    sig 0x000906e9, pf_mask 0x2a, 2023-09-28, rev 0x00f8, size 108544
+    sig 0x000906ea, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 105472
+    sig 0x000906ec, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 106496
+    sig 0x000906ed, pf_mask 0x22, 2023-07-27, rev 0x00fc, size 106496
+    sig 0x000a0652, pf_mask 0x20, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0653, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0655, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0660, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 97280
+    sig 0x000a0661, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 96256
+    sig 0x000a0671, pf_mask 0x02, 2023-09-14, rev 0x005e, size 108544
+    sig 0x000b0671, pf_mask 0x32, 2023-12-14, rev 0x0122, size 215040
+    sig 0x000b06a2, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
+    sig 0x000b06a3, pf_mask 0xe0, 2023-12-07, rev 0x4121
+    sig 0x000b06e0, pf_mask 0x11, 2023-09-25, rev 0x0015, size 138240
+  * New microcodes:
+    sig 0x000a06a4, pf_mask 0xe6, 2024-01-03, rev 0x001c, size 136192
+    sig 0x000b06a8, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
+    sig 0x000c06f2, pf_mask 0x87, 2023-11-20, rev 0x21000200, size 549888
+    sig 0x000c06f1, pf_mask 0x87, 2023-11-20, rev 0x21000200
+  * source: update symlinks to reflect id of the latest release, 20240312
+  * changelog, debian/changelog: fix typos
+
+ -- Henrique de Moraes Holschuh <h...@debian.org>  Tue, 12 Mar 2024 20:28:17 -0300
+
 intel-microcode (3.20231114.1~deb11u1) bullseye-security; urgency=high
 
   * Backport to Debian Bullseye
diff --git a/intel-ucode/06-55-03 b/intel-ucode/06-55-03
index 766d990..453381b 100644
Binary files a/intel-ucode/06-55-03 and b/intel-ucode/06-55-03 differ
diff --git a/intel-ucode/06-55-06 b/intel-ucode/06-55-06
index ceff891..e7365a0 100644
Binary files a/intel-ucode/06-55-06 and b/intel-ucode/06-55-06 differ
diff --git a/intel-ucode/06-55-07 b/intel-ucode/06-55-07
index 27a0877..ed8e1bb 100644
Binary files a/intel-ucode/06-55-07 and b/intel-ucode/06-55-07 differ
diff --git a/intel-ucode/06-55-0b b/intel-ucode/06-55-0b
index 5923077..3765a13 100644
Binary files a/intel-ucode/06-55-0b and b/intel-ucode/06-55-0b differ
diff --git a/intel-ucode/06-56-05 b/intel-ucode/06-56-05
index 65c6585..57ef214 100644
Binary files a/intel-ucode/06-56-05 and b/intel-ucode/06-56-05 differ
diff --git a/intel-ucode/06-5f-01 b/intel-ucode/06-5f-01
index efbaf9f..cc6c50e 100644
Binary files a/intel-ucode/06-5f-01 and b/intel-ucode/06-5f-01 differ
diff --git a/intel-ucode/06-6a-06 b/intel-ucode/06-6a-06
index 63ff381..9252ca3 100644
Binary files a/intel-ucode/06-6a-06 and b/intel-ucode/06-6a-06 differ
diff --git a/intel-ucode/06-6c-01 b/intel-ucode/06-6c-01
index 6d9b6c1..04ab878 100644
Binary files a/intel-ucode/06-6c-01 and b/intel-ucode/06-6c-01 differ
diff --git a/intel-ucode/06-7a-01 b/intel-ucode/06-7a-01
index 04e1228..ad4c017 100644
Binary files a/intel-ucode/06-7a-01 and b/intel-ucode/06-7a-01 differ
diff --git a/intel-ucode/06-7a-08 b/intel-ucode/06-7a-08
index 0107cef..06a4a8a 100644
Binary files a/intel-ucode/06-7a-08 and b/intel-ucode/06-7a-08 differ
diff --git a/intel-ucode/06-7e-05 b/intel-ucode/06-7e-05
index 5651876..70379a1 100644
Binary files a/intel-ucode/06-7e-05 and b/intel-ucode/06-7e-05 differ
diff --git a/intel-ucode/06-8c-01 b/intel-ucode/06-8c-01
index 97bc435..b497e4f 100644
Binary files a/intel-ucode/06-8c-01 and b/intel-ucode/06-8c-01 differ
diff --git a/intel-ucode/06-8c-02 b/intel-ucode/06-8c-02
index 62b5619..4707b7a 100644
Binary files a/intel-ucode/06-8c-02 and b/intel-ucode/06-8c-02 differ
diff --git a/intel-ucode/06-8d-01 b/intel-ucode/06-8d-01
index b58673d..2a5ad8b 100644
Binary files a/intel-ucode/06-8d-01 and b/intel-ucode/06-8d-01 differ
diff --git a/intel-ucode/06-8e-0c b/intel-ucode/06-8e-0c
index 7a5ab9e..79b231e 100644
Binary files a/intel-ucode/06-8e-0c and b/intel-ucode/06-8e-0c differ
diff --git a/intel-ucode/06-8f-04 b/intel-ucode/06-8f-04
deleted file mode 100644
index 03c5203..0000000
Binary files a/intel-ucode/06-8f-04 and /dev/null differ
diff --git a/intel-ucode/06-8f-05 b/intel-ucode/06-8f-05
index 03c5203..bef4d36 100644
Binary files a/intel-ucode/06-8f-05 and b/intel-ucode/06-8f-05 differ
diff --git a/intel-ucode/06-8f-06 b/intel-ucode/06-8f-06
index 03c5203..bef4d36 100644
Binary files a/intel-ucode/06-8f-06 and b/intel-ucode/06-8f-06 differ
diff --git a/intel-ucode/06-8f-07 b/intel-ucode/06-8f-07
index 0faf112..07ab364 100644
Binary files a/intel-ucode/06-8f-07 and b/intel-ucode/06-8f-07 differ
diff --git a/intel-ucode/06-8f-08 b/intel-ucode/06-8f-08
index 03c5203..bef4d36 100644
Binary files a/intel-ucode/06-8f-08 and b/intel-ucode/06-8f-08 differ
diff --git a/intel-ucode/06-96-01 b/intel-ucode/06-96-01
index df48ee6..8f27f73 100644
Binary files a/intel-ucode/06-96-01 and b/intel-ucode/06-96-01 differ
diff --git a/intel-ucode/06-97-02 b/intel-ucode/06-97-02
index e1fefd5..71c9c34 100644
Binary files a/intel-ucode/06-97-02 and b/intel-ucode/06-97-02 differ
diff --git a/intel-ucode/06-97-05 b/intel-ucode/06-97-05
index e1fefd5..71c9c34 100644
Binary files a/intel-ucode/06-97-05 and b/intel-ucode/06-97-05 differ
diff --git a/intel-ucode/06-9a-03 b/intel-ucode/06-9a-03
index 7ccc15a..a8339f9 100644
Binary files a/intel-ucode/06-9a-03 and b/intel-ucode/06-9a-03 differ
diff --git a/intel-ucode/06-9a-04 b/intel-ucode/06-9a-04
index 1498e8b..5917702 100644
Binary files a/intel-ucode/06-9a-04 and b/intel-ucode/06-9a-04 differ
diff --git a/intel-ucode/06-9c-00 b/intel-ucode/06-9c-00
index 991f352..404028c 100644
Binary files a/intel-ucode/06-9c-00 and b/intel-ucode/06-9c-00 differ
diff --git a/intel-ucode/06-9e-09 b/intel-ucode/06-9e-09
index e5750bb..a6dfbca 100644
Binary files a/intel-ucode/06-9e-09 and b/intel-ucode/06-9e-09 differ
diff --git a/intel-ucode/06-9e-0a b/intel-ucode/06-9e-0a
index 040aeb5..20ae2f3 100644
Binary files a/intel-ucode/06-9e-0a and b/intel-ucode/06-9e-0a differ
diff --git a/intel-ucode/06-9e-0c b/intel-ucode/06-9e-0c
index 3e1192c..d5f3aa0 100644
Binary files a/intel-ucode/06-9e-0c and b/intel-ucode/06-9e-0c differ
diff --git a/intel-ucode/06-9e-0d b/intel-ucode/06-9e-0d
index e2019be..d3b689a 100644
Binary files a/intel-ucode/06-9e-0d and b/intel-ucode/06-9e-0d differ
diff --git a/intel-ucode/06-a5-02 b/intel-ucode/06-a5-02
index acc3947..31a1a4d 100644
Binary files a/intel-ucode/06-a5-02 and b/intel-ucode/06-a5-02 differ
diff --git a/intel-ucode/06-a5-03 b/intel-ucode/06-a5-03
index 4e68aef..581d5cb 100644
Binary files a/intel-ucode/06-a5-03 and b/intel-ucode/06-a5-03 differ
diff --git a/intel-ucode/06-a5-05 b/intel-ucode/06-a5-05
index 67a0e02..dffdcd5 100644
Binary files a/intel-ucode/06-a5-05 and b/intel-ucode/06-a5-05 differ
diff --git a/intel-ucode/06-a6-00 b/intel-ucode/06-a6-00
index b155780..0c3b14a 100644
Binary files a/intel-ucode/06-a6-00 and b/intel-ucode/06-a6-00 differ
diff --git a/intel-ucode/06-a6-01 b/intel-ucode/06-a6-01
index deed90d..e174946 100644
Binary files a/intel-ucode/06-a6-01 and b/intel-ucode/06-a6-01 differ
diff --git a/intel-ucode/06-a7-01 b/intel-ucode/06-a7-01
index 787c683..1610dee 100644
Binary files a/intel-ucode/06-a7-01 and b/intel-ucode/06-a7-01 differ
diff --git a/intel-ucode/06-aa-04 b/intel-ucode/06-aa-04
new file mode 100644
index 0000000..cc1f4ab
Binary files /dev/null and b/intel-ucode/06-aa-04 differ
diff --git a/intel-ucode/06-b7-01 b/intel-ucode/06-b7-01
index c86bd11..d918b30 100644
Binary files a/intel-ucode/06-b7-01 and b/intel-ucode/06-b7-01 differ
diff --git a/intel-ucode/06-ba-02 b/intel-ucode/06-ba-02
index 1c6b0bd..c2b3de7 100644
Binary files a/intel-ucode/06-ba-02 and b/intel-ucode/06-ba-02 differ
diff --git a/intel-ucode/06-ba-03 b/intel-ucode/06-ba-03
index 1c6b0bd..c2b3de7 100644
Binary files a/intel-ucode/06-ba-03 and b/intel-ucode/06-ba-03 differ
diff --git a/intel-ucode/06-ba-08 b/intel-ucode/06-ba-08
new file mode 100644
index 0000000..c2b3de7
Binary files /dev/null and b/intel-ucode/06-ba-08 differ
diff --git a/intel-ucode/06-be-00 b/intel-ucode/06-be-00
index 54553a9..9ed1278 100644
Binary files a/intel-ucode/06-be-00 and b/intel-ucode/06-be-00 differ
diff --git a/intel-ucode/06-bf-02 b/intel-ucode/06-bf-02
index e1fefd5..71c9c34 100644
Binary files a/intel-ucode/06-bf-02 and b/intel-ucode/06-bf-02 differ
diff --git a/intel-ucode/06-bf-05 b/intel-ucode/06-bf-05
index e1fefd5..71c9c34 100644
Binary files a/intel-ucode/06-bf-05 and b/intel-ucode/06-bf-05 differ
diff --git a/intel-ucode/06-cf-01 b/intel-ucode/06-cf-01
new file mode 100644
index 0000000..5cdd274
Binary files /dev/null and b/intel-ucode/06-cf-01 differ
diff --git a/intel-ucode/06-cf-02 b/intel-ucode/06-cf-02
new file mode 100644
index 0000000..5cdd274
Binary files /dev/null and b/intel-ucode/06-cf-02 differ
diff --git a/microcode-20231114.d b/microcode-20240312.d
similarity index 100%
rename from microcode-20231114.d
rename to microcode-20240312.d
diff --git a/releasenote.md b/releasenote.md
index b66bcee..32614fc 100644
--- a/releasenote.md
+++ b/releasenote.md
@@ -1,3 +1,99 @@
+# Release Notes
+## [microcode-20240312](https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20240312)
+
+### Purpose
+
+- Security updates for [INTEL-SA-INTEL-SA-00972](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00972.html)
+- Security updates for [INTEL-SA-INTEL-SA-00982](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00982.html)
+- Security updates for [INTEL-SA-INTEL-SA-00898](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00898.html)
+- Security updates for [INTEL-SA-INTEL-SA-00960](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00960.html)
+- Security updates for [INTEL-SA-INTEL-SA-01045](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01045.html)
+
+- Update for functional issues. Refer to [Intel® Core™ Ultra Processor](https://cdrdv2.intel.com/v1/dl/getContent/792254) for details.
+- Update for functional issues. Refer to [13th Generation Intel® Core™ Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/740518) for details.
+- Update for functional issues. Refer to [12th Generation Intel® Core™ Processor Family](https://cdrdv2.intel.com/v1/dl/getContent/682436) for details.
+- Update for functional issues. Refer to [11th Gen Intel® Core™ Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/631123) for details.
+- Update for functional issues. Refer to [10th Gen Intel® Core™ Processor Families Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/341079) for details.
+- Update for functional issues. Refer to [10th Generation Intel® Core™ Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/615213) for details.
+- Update for functional issues. Refer to [8th and 9th Generation Intel® Core™ Processor Family Spec Update](https://cdrdv2.intel.com/v1/dl/getContent/337346) for details.
+- Update for functional issues. Refer to [8th Generation Intel® Core™ Processor Families Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338025) for details.
+- Update for functional issues. Refer to [7th and 8th Generation Intel® Core™ Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/334663) for details.
+- Update for functional issues. Refer to [5th Gen Intel® Xeon® Scalable Processors Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/793902) for details.
+- Update for functional issues. Refer to [4th Gen Intel® Xeon® Scalable Processors Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/772415) for details.
+- Update for functional issues. Refer to [3rd Generation Intel® Xeon® Scalable Processors Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/634897) for details.
+- Update for functional issues. Refer to [3rd Generation Intel® Xeon® Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/637780) for details.
+- Update for functional issues. Refer to [2nd Generation Intel® Xeon® Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338848) for details.
+- Update for functional issues. Refer to [Intel® Processors and Intel® Core™ i3 N-Series](https://cdrdv2.intel.com/v1/dl/getContent/764616) for details.
+- Update for functional issues. Refer to [Intel® Xeon® D-2700 Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/714071) for details.
+- Update for functional issues. Refer to [Intel® Xeon® E-2300 Processor Specification Update ](https://cdrdv2.intel.com/v1/dl/getContent/709192) for details.
+- Update for functional issues. Refer to [Intel® Xeon® Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/613537) for details.
+- Update for functional issues. Refer to [Intel® Atom® C3000 Processor Product Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/336345) for details.
+- Update for functional issues. Refer to [Intel® Atom® x6000E Series, and Intel® Pentium® and Celeron® N and J Series Processors for Internet of Things (IoT) Applications](https://cdrdv2.intel.com/v1/dl/getContent/636674) for details.
+- Update for functional issues. Refer to [Intel® Pentium® Silver and Intel® Celeron® Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/336562) for details.
+- Update for functional issues. Refer to [Intel® Pentium® Silver and Intel® Celeron® Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/634542) for details.
+
+
+
+
+### New Platforms
+
+| Processor      | Stepping | F-M-S/PI    | Old Ver  | New Ver  | Products
+|:---------------|:---------|:------------|:---------|:---------|:---------
+| EMR-SP         | A-1      | 06-cf-02/87 |          | 21000200 | Xeon Scalable Gen5
+| EMR-SP         | A-0      | 06-cf-01/87 |          | 21000200 | Xeon Scalable Gen5
+| MTL            | C-0      | 06-aa-04/e6 |          | 0000001c | Core™ Ultra Processor
+
+### Updated Platforms
+
+| Processor      | Stepping | F-M-S/PI    | Old Ver  | New Ver  | Products
+|:---------------|:---------|:------------|:---------|:---------|:---------
+| ADL            | C0       | 06-97-02/07 | 00000032 | 00000034 | Core Gen12
+| ADL            | H0       | 06-97-05/07 | 00000032 | 00000034 | Core Gen12
+| ADL            | L0       | 06-9a-03/80 | 00000430 | 00000432 | Core Gen12
+| ADL            | R0       | 06-9a-04/80 | 00000430 | 00000432 | Core Gen12
+| ADL-N          | N0       | 06-be-00/11 | 00000012 | 00000015 | Core i3-N305/N300, N50/N97/N100/N200, Atom x7211E/x7213E/x7425E
+| AML-Y42        | V0       | 06-8e-0c/94 | 000000f8 | 000000fa | Core Gen10 Mobile
+| BDX-NS         | A1       | 06-56-05/10 | 0e000014 | 0e000015 | Xeon D-1513N/23/33/43/53
+| CFL-H          | R0       | 06-9e-0d/22 | 000000fa | 000000fc | Core Gen9 Mobile
+| CFL-H/S        | P0       | 06-9e-0c/22 | 000000f4 | 000000f6 | Core Gen9
+| CFL-H/S/E3     | U0       | 06-9e-0a/22 | 000000f4 | 000000f6 | Core Gen8 Desktop, Mobile, Xeon E
+| CFL-S          | P0       | 06-9e-0c/22 | 000000f4 | 000000f6 | Core Gen9 Desktop
+| CLX-SP         | B0       | 06-55-06/bf | 04003604 | 04003605 | Xeon Scalable Gen2
+| CLX-SP         | B1       | 06-55-07/bf | 05003604 | 05003605 | Xeon Scalable Gen2
+| CML-H          | R1       | 06-a5-02/20 | 000000f8 | 000000fa | Core Gen10 Mobile
+| CML-S102       | Q0       | 06-a5-05/22 | 000000f8 | 000000fa | Core Gen10
+| CML-S62        | G1       | 06-a5-03/22 | 000000f8 | 000000fa | Core Gen10
+| CML-U42        | V0       | 06-8e-0c/94 | 000000f8 | 000000fa | Core Gen10 Mobile
+| CML-U62 V1     | A0       | 06-a6-00/80 | 000000f8 | 000000fa | Core Gen10 Mobile
+| CML-U62 V2     | K1       | 06-a6-01/80 | 000000f8 | 000000fa | Core Gen10 Mobile
+| CML-Y42        | V0       | 06-8e-0c/94 | 000000f8 | 000000fa | Core Gen10 Mobile
+| CPX-SP         | A1       | 06-55-0b/bf | 07002703 | 07002802 | Xeon Scalable Gen3
+| DNV            | B0       | 06-5f-01/01 | 00000038 | 0000003e | Atom C Series
+| EHL            | B1       | 06-96-01/01 | 00000017 | 00000019 | Pentium J6426/N6415, Celeron J6412/J6413/N6210/N6211, Atom x6000E
+| GLK            | B0       | 06-7a-01/01 | 0000003e | 00000040 | Pentium Silver N/J5xxx, Celeron N/J4xxx
+| GLK-R          | R0       | 06-7a-08/01 | 00000022 | 00000024 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120
+| ICL-D          | B0       | 06-6c-01/10 | 01000268 | 01000290 | Xeon D-17xx, D-27xx
+| ICL-U/Y        | D1       | 06-7e-05/80 | 000000c2 | 000000c4 | Core Gen10 Mobile
+| ICX-SP         | Dx/M1    | 06-6a-06/87 | 0d0003b9 | 0d0003d1 | Xeon Scalable Gen3
+| JSL            | A0/A1    | 06-9c-00/01 | 24000024 | 24000026 | Pentium N6000/N6005, Celeron N4500/N4505/N5100/N5105
+| KBL-G/H/S/X/E3 | B0       | 06-9e-09/2a | 000000f4 | 000000f8 | Core Gen7; Xeon E3 v6
+| RPL-H/P/PX 6+8 | J0       | 06-ba-02/e0 | 0000411c | 00004121 | Core Gen13
+| RPL-S          | B0       | 06-b7-01/32 | 0000011d | 00000122 | Core Gen13
+| RPL-S          | H0       | 06-bf-05/07 | 00000032 | 00000034 | Core Gen12
+| RKL-S          | B0       | 06-a7-01/02 | 0000005d | 0000005e | Core Gen11
+| RPL-S/HX       | C0       | 06-bf-02/07 | 00000032 | 00000034 | Core Gen12
+| RPL-U 2+8      | Q0       | 06-ba-03/e0 | 0000411c | 00004121 | Core Gen13
+| SKX-SP         | B1       | 06-55-03/97 | 01000181 | 01000191 | Xeon Scalable
+| SPR-SP         | E5/S3    | 06-8f-08/87 | 2b0004d0 | 2b000590 | Xeon Scalable Gen4
+| SPR-SP         | E4/S2    | 06-8f-07/87 | 2b0004d0 | 2b000590 | Xeon Scalable Gen4
+| SPR-SP         | E3       | 06-8f-06/87 | 2b0004d0 | 2b000590 | Xeon Scalable Gen4
+| SPR-SP         | E2       | 06-8f-05/87 | 2b0004d0 | 2b000590 | Xeon Scalable Gen4
+| TGL            | B0/B1    | 06-8c-01/80 | 000000b4 | 000000b6 | Core Gen11 Mobile
+| TGL-H          | R0       | 06-8d-01/c2 | 0000004e | 00000050 | Core Gen11 Mobile
+| TGL-R          | C0       | 06-8c-02/c2 | 00000034 | 00000036 | Core Gen11 Mobile
+| WHL-U          | V0       | 06-8e-0c/94 | 000000f8 | 000000fa | Core Gen8 Mobile
+
+
 # Release Notes
 ## [microcode-20231114](https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20231114)
 
diff --git a/supplementary-ucode-20231114_BDX-ML.bin b/supplementary-ucode-20240312_BDX-ML.bin
similarity index 100%
rename from supplementary-ucode-20231114_BDX-ML.bin
rename to supplementary-ucode-20240312_BDX-ML.bin

Reply via email to