Security update for ucode-intel SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:20020-1 Final 1 1 2025-02-03T08:49:06Z current 2025-02-03T08:49:06Z 2025-02-03T08:49:06Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ucode-intel This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20240514 release (bsc#1224277) - CVE-2023-45733: Security updates for INTEL-SA-01051 - CVE-2023-46103: Security updates for INTEL-SA-01052 - CVE-2023-45745,CVE-2023-47855: Security updates for INTEL-SA-01036 - Updated to Intel CPU Microcode 20240312 release. (bsc#1221323) - Security updates for INTEL-SA-INTEL-SA-00972 - CVE-2023-39368: Protection mechanism failure of bus lock regulator for some Intel Processors may allow an unauthenticated user to potentially enable denial of service via network access - Security updates for INTEL-SA-INTEL-SA-00982 - CVE-2023-38575: Non-transparent sharing of return predictor targets between contexts in some Intel Processors may allow an authorized user to potentially enable information disclosure via local access. - Security updates for INTEL-SA-INTEL-SA-00898 - CVE-2023-28746: Information exposure through microarchitectural state after transient execution from some register files for some Intel Atom Processors may allow an authenticated user to potentially enable information disclosure via local access. - Security updates for INTEL-SA-INTEL-SA-00960 - CVE-2023-22655 Protection mechanism failure in some 3rd and 4th Generation Intel Xeon Processors when using Intel SGX or Intel TDX may allow a privileged user to potentially enable escalation of privilege via local access. - Security updates for INTEL-SA-INTEL-SA-01045 - CVE-2023-43490: Incorrect calculation in microcode keying mechanism for some Intel Xeon D Processors with Intel SGX may allow a privileged user to potentially enable information disclosure via local access. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-Micro-6.0-22 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ Link for SUSE-SU-2025:20020-1 https://lists.suse.com/pipermail/sle-security-updates/2025-June/021372.html E-Mail link for SUSE-SU-2025:20020-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1221323 SUSE Bug 1221323 https://bugzilla.suse.com/1224277 SUSE Bug 1224277 https://www.suse.com/security/cve/CVE-2023-22655/ SUSE CVE CVE-2023-22655 page https://www.suse.com/security/cve/CVE-2023-28746/ SUSE CVE CVE-2023-28746 page https://www.suse.com/security/cve/CVE-2023-38575/ SUSE CVE CVE-2023-38575 page https://www.suse.com/security/cve/CVE-2023-39368/ SUSE CVE CVE-2023-39368 page https://www.suse.com/security/cve/CVE-2023-43490/ SUSE CVE CVE-2023-43490 page https://www.suse.com/security/cve/CVE-2023-45733/ SUSE CVE CVE-2023-45733 page https://www.suse.com/security/cve/CVE-2023-45745/ SUSE CVE CVE-2023-45745 page https://www.suse.com/security/cve/CVE-2023-46103/ SUSE CVE CVE-2023-46103 page https://www.suse.com/security/cve/CVE-2023-47855/ SUSE CVE CVE-2023-47855 page SUSE Linux Micro 6.0 ucode-intel-20240813-1.1 ucode-intel-20240813-1.1 as a component of SUSE Linux Micro 6.0 Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2023-22655 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-22655.html CVE-2023-22655 https://bugzilla.suse.com/1221323 SUSE Bug 1221323 Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2023-28746 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-28746.html CVE-2023-28746 https://bugzilla.suse.com/1213456 SUSE Bug 1213456 https://bugzilla.suse.com/1221323 SUSE Bug 1221323 Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. CVE-2023-38575 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-38575.html CVE-2023-38575 https://bugzilla.suse.com/1221323 SUSE Bug 1221323 Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access. CVE-2023-39368 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-39368.html CVE-2023-39368 https://bugzilla.suse.com/1221323 SUSE Bug 1221323 Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access. CVE-2023-43490 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-43490.html CVE-2023-43490 https://bugzilla.suse.com/1221323 SUSE Bug 1221323 Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclosure via local access. CVE-2023-45733 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-45733.html CVE-2023-45733 https://bugzilla.suse.com/1224277 SUSE Bug 1224277 Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2023-45745 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-45745.html CVE-2023-45745 https://bugzilla.suse.com/1224277 SUSE Bug 1224277 Sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2023-46103 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-46103.html CVE-2023-46103 https://bugzilla.suse.com/1224277 SUSE Bug 1224277 Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2023-47855 SUSE Linux Micro 6.0:ucode-intel-20240813-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520020-1/ https://www.suse.com/security/cve/CVE-2023-47855.html CVE-2023-47855 https://bugzilla.suse.com/1224277 SUSE Bug 1224277