ucode-intel-20250211-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:15865 Final 1 1 2025-02-12T00:00:00Z current 2025-02-12T00:00:00Z 2025-02-12T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ucode-intel-20250211-1.1 on GA media These are all security issues fixed in the ucode-intel-20250211-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-15865 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2024-31068/ SUSE CVE CVE-2024-31068 page https://www.suse.com/security/cve/CVE-2024-36293/ SUSE CVE CVE-2024-36293 page https://www.suse.com/security/cve/CVE-2024-37020/ SUSE CVE CVE-2024-37020 page https://www.suse.com/security/cve/CVE-2024-39355/ SUSE CVE CVE-2024-39355 page openSUSE Tumbleweed ucode-intel-20250211-1.1 ucode-intel-20250211-1.1 as a component of openSUSE Tumbleweed Improper Finite State Machines (FSMs) in Hardware Logic for some Intel(R) Processors may allow privileged user to potentially enable denial of service via local access. CVE-2024-31068 openSUSE Tumbleweed:ucode-intel-20250211-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-31068.html CVE-2024-31068 https://bugzilla.suse.com/1237096 SUSE Bug 1237096 Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access. CVE-2024-36293 openSUSE Tumbleweed:ucode-intel-20250211-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-36293.html CVE-2024-36293 https://bugzilla.suse.com/1237096 SUSE Bug 1237096 Sequence of processor instructions leads to unexpected behavior in the Intel(R) DSA V1.0 for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2024-37020 openSUSE Tumbleweed:ucode-intel-20250211-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-37020.html CVE-2024-37020 https://bugzilla.suse.com/1237096 SUSE Bug 1237096 Improper handling of physical or environmental conditions in some Intel(R) Processors may allow an authenticated user to enable denial of service via local access. CVE-2024-39355 openSUSE Tumbleweed:ucode-intel-20250211-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-39355.html CVE-2024-39355 https://bugzilla.suse.com/1237096 SUSE Bug 1237096