An update for microcode_ctl is now available for openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP1,openEuler-24.03-LTS,openEuler-22.03-LTS-SP4 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2024-2524 Final 1.0 1.0 2024-12-06 Initial 2024-12-06 2024-12-06 openEuler SA Tool V1.0 2024-12-06 microcode_ctl security update An update for microcode_ctl is now available for openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP1,openEuler-24.03-LTS,openEuler-22.03-LTS-SP4 This is a tool to transform and deploy microcode update for x86 CPUs. Security Fix(es): (CVE-2024-21820) (CVE-2024-21853) An update for microcode_ctl is now available for openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP1,openEuler-24.03-LTS,openEuler-22.03-LTS-SP4. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High microcode_ctl https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2524 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-21820 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-21853 https://nvd.nist.gov/vuln/detail/CVE-2024-21820 https://nvd.nist.gov/vuln/detail/CVE-2024-21853 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS openEuler-22.03-LTS-SP4 microcode_ctl-20241112-1.oe2203sp3.src.rpm microcode_ctl-20241112-1.oe2003sp4.src.rpm microcode_ctl-20241112-1.oe2203sp1.src.rpm microcode_ctl-20241112-1.oe2403.src.rpm microcode_ctl-20241112-1.oe2203sp4.src.rpm microcode_ctl-20241112-1.oe2203sp3.x86_64.rpm microcode_ctl-20241112-1.oe2003sp4.x86_64.rpm microcode_ctl-20241112-1.oe2203sp1.x86_64.rpm microcode_ctl-20241112-1.oe2403.x86_64.rpm microcode_ctl-20241112-1.oe2203sp4.x86_64.rpm Incorrect default permissions in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via local access. 2024-12-06 CVE-2024-21820 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS openEuler-22.03-LTS-SP4 High 7.2 AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N microcode_ctl security update 2024-12-06 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2524 Improper finite state machines (FSMs) in the hardware logic in some 4th and 5th Generation Intel(R) Xeon(R) Processors may allow an authorized user to potentially enable denial of service via local access. 2024-12-06 CVE-2024-21853 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS openEuler-22.03-LTS-SP4 Medium 4.7 AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H microcode_ctl security update 2024-12-06 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2524