ucode-intel-20250512-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:15093-1 Final 1 1 2025-05-15T00:00:00Z current 2025-05-15T00:00:00Z 2025-05-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ucode-intel-20250512-1.1 on GA media These are all security issues fixed in the ucode-intel-20250512-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-15093 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ E-Mail link for openSUSE-SU-2025:15093-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2024-28956/ SUSE CVE CVE-2024-28956 page https://www.suse.com/security/cve/CVE-2024-43420/ SUSE CVE CVE-2024-43420 page https://www.suse.com/security/cve/CVE-2024-45332/ SUSE CVE CVE-2024-45332 page https://www.suse.com/security/cve/CVE-2025-20012/ SUSE CVE CVE-2025-20012 page https://www.suse.com/security/cve/CVE-2025-20054/ SUSE CVE CVE-2025-20054 page https://www.suse.com/security/cve/CVE-2025-20103/ SUSE CVE CVE-2025-20103 page https://www.suse.com/security/cve/CVE-2025-20623/ SUSE CVE CVE-2025-20623 page https://www.suse.com/security/cve/CVE-2025-24495/ SUSE CVE CVE-2025-24495 page openSUSE Tumbleweed ucode-intel-20250512-1.1 ucode-intel-20250512-1.1 as a component of openSUSE Tumbleweed Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2024-28956 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2024-28956.html CVE-2024-28956 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2024-43420 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2024-43420.html CVE-2024-43420 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 https://bugzilla.suse.com/1243451 SUSE Bug 1243451 Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2024-45332 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2024-45332.html CVE-2024-45332 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 https://bugzilla.suse.com/1243180 SUSE Bug 1243180 Incorrect behavior order for some Intel(R) Core(tm) Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access. CVE-2025-20012 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2025-20012.html CVE-2025-20012 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 https://bugzilla.suse.com/1243123 SUSE Bug 1243123 Uncaught exception in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2025-20054 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2025-20054.html CVE-2025-20054 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 https://bugzilla.suse.com/1243123 SUSE Bug 1243123 Insufficient resource pool in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2025-20103 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2025-20103.html CVE-2025-20103 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 https://bugzilla.suse.com/1243123 SUSE Bug 1243123 Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R) Core(tm) processors (10th Generation) may allow an authenticated user to potentially enable information disclosure via local access. CVE-2025-20623 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2025-20623.html CVE-2025-20623 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 https://bugzilla.suse.com/1243454 SUSE Bug 1243454 Incorrect initialization of resource in the branch prediction unit for some Intel(R) Core(tm) Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2025-24495 openSUSE Tumbleweed:ucode-intel-20250512-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IDMNMRHOEJBKOC4ZPMYVNMKT2SGRVB7Q/ https://www.suse.com/security/cve/CVE-2025-24495.html CVE-2025-24495 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 https://bugzilla.suse.com/1243123 SUSE Bug 1243123