Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: d1e241f6 by Salvatore Bonaccorso at 2019-11-13T05:22:40Z Update information for intel-microcode fixes - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -25857,6 +25857,8 @@ CVE-2019-11140 (Insufficient session validation in system firmware for Intel(R) NOT-FOR-US: Intel CVE-2019-11139 RESERVED + - intel-microcode 3.20191112.1 + NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00271.html CVE-2019-11138 RESERVED CVE-2019-11137 @@ -25867,7 +25869,7 @@ CVE-2019-11135 [TSX Asynchronous Abort] RESERVED {DSA-4565-1 DSA-4564-1} - linux 5.3.9-2 - - intel-microcode <unfixed> + - intel-microcode 3.20191112.1 - xen <unfixed> NOTE: https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort NOTE: https://xenbits.xen.org/xsa/advisory-305.html @@ -57901,6 +57903,8 @@ CVE-2019-0118 RESERVED CVE-2019-0117 RESERVED + NOT-FOR-US: Intel SGX vulnerabilities + NOTE: Fixes included in intel-microcode/3.20191112.1 CVE-2019-0116 (An out of bound read in KMD module for Intel(R) Graphics Driver before ...) NOT-FOR-US: Intel CVE-2019-0115 (Insufficient input validation in KMD module for Intel(R) Graphics Driv ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1e241f61028680feb165d7fcf957681c6d543ee -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1e241f61028680feb165d7fcf957681c6d543ee You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits