An update for linux-firmware is now available for openEuler-22.03-LTS-SP3,openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-20.03-LTS-SP4 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2025-1307 Final 1.0 1.0 2025-03-21 Initial 2025-03-21 2025-03-21 openEuler SA Tool V1.0 2025-03-21 linux-firmware security update An update for linux-firmware is now available for openEuler-22.03-LTS-SP3,openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-20.03-LTS-SP4 This package contains firmware images required by some devices. Security Fix(es): Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious CPU microcode resulting in loss of confidentiality and integrity of a confidential guest running under AMD SEV-SNP.(CVE-2024-56161) An update for linux-firmware is now available for openEuler-22.03-LTS-SP3,openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-20.03-LTS-SP4. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High linux-firmware https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1307 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-56161 https://nvd.nist.gov/vuln/detail/CVE-2024-56161 openEuler-22.03-LTS-SP3 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-20.03-LTS-SP4 linux-firmware-20250311-1.oe2203sp3.src.rpm linux-firmware-20250311-1.oe2203sp4.src.rpm linux-firmware-20250311-1.oe2403.src.rpm linux-firmware-20250311-1.oe2403sp1.src.rpm linux-firmware-20250311-1.oe2003sp4.src.rpm linux-firmware-20250311-1.oe2203sp3.noarch.rpm linux-firmware-ath-20250311-1.oe2203sp3.noarch.rpm linux-firmware-cypress-20250311-1.oe2203sp3.noarch.rpm linux-firmware-iwlwifi-20250311-1.oe2203sp3.noarch.rpm linux-firmware-libertas-20250311-1.oe2203sp3.noarch.rpm linux-firmware-mediatek-20250311-1.oe2203sp3.noarch.rpm linux-firmware-mrvl-20250311-1.oe2203sp3.noarch.rpm linux-firmware-netronome-20250311-1.oe2203sp3.noarch.rpm linux-firmware-ti-connectivity-20250311-1.oe2203sp3.noarch.rpm linux-firmware-20250311-1.oe2203sp4.noarch.rpm linux-firmware-ath-20250311-1.oe2203sp4.noarch.rpm linux-firmware-cypress-20250311-1.oe2203sp4.noarch.rpm linux-firmware-iwlwifi-20250311-1.oe2203sp4.noarch.rpm linux-firmware-libertas-20250311-1.oe2203sp4.noarch.rpm linux-firmware-mediatek-20250311-1.oe2203sp4.noarch.rpm linux-firmware-mrvl-20250311-1.oe2203sp4.noarch.rpm linux-firmware-netronome-20250311-1.oe2203sp4.noarch.rpm linux-firmware-ti-connectivity-20250311-1.oe2203sp4.noarch.rpm linux-firmware-20250311-1.oe2403.noarch.rpm linux-firmware-ath-20250311-1.oe2403.noarch.rpm linux-firmware-cypress-20250311-1.oe2403.noarch.rpm linux-firmware-iwlwifi-20250311-1.oe2403.noarch.rpm linux-firmware-libertas-20250311-1.oe2403.noarch.rpm linux-firmware-mediatek-20250311-1.oe2403.noarch.rpm linux-firmware-mrvl-20250311-1.oe2403.noarch.rpm linux-firmware-netronome-20250311-1.oe2403.noarch.rpm linux-firmware-ti-connectivity-20250311-1.oe2403.noarch.rpm linux-firmware-20250311-1.oe2403sp1.noarch.rpm linux-firmware-ath-20250311-1.oe2403sp1.noarch.rpm linux-firmware-cypress-20250311-1.oe2403sp1.noarch.rpm linux-firmware-iwlwifi-20250311-1.oe2403sp1.noarch.rpm linux-firmware-libertas-20250311-1.oe2403sp1.noarch.rpm linux-firmware-mediatek-20250311-1.oe2403sp1.noarch.rpm linux-firmware-mrvl-20250311-1.oe2403sp1.noarch.rpm linux-firmware-netronome-20250311-1.oe2403sp1.noarch.rpm linux-firmware-ti-connectivity-20250311-1.oe2403sp1.noarch.rpm linux-firmware-20250311-1.oe2003sp4.noarch.rpm Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious CPU microcode resulting in loss of confidentiality and integrity of a confidential guest running under AMD SEV-SNP. 2025-03-21 CVE-2024-56161 openEuler-22.03-LTS-SP3 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-20.03-LTS-SP4 High 7.2 AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N linux-firmware security update 2025-03-21 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1307