Univention Bugzilla – Bug 51733
intel-microcode: Multiple issues (4.4)
Last modified: 2020-07-29 16:50:54 CEST
New Debian intel-microcode 3.20200616.1~deb9u1 fixes: This update addresses the following issue: * Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543)
--- mirror/ftp/4.4/unmaintained/4.4-5/source/intel-microcode_3.20200609.2~deb9u1.dsc +++ apt/ucs_4.4-0-errata4.4-5/source/intel-microcode_3.20200616.1~deb9u1.dsc @@ -1,3 +1,18 @@ +3.20200616.1~deb9u1 [Sun, 05 Jul 2020 15:26:41 -0300] Henrique de Moraes Holschuh <hmh@debian.org>: + + * Rebuild for Debian oldstable (stretch), no changes + +3.20200616.1 [Sun, 28 Jun 2020 18:38:57 -0300] Henrique de Moraes Holschuh <hmh@debian.org>: + + * New upstream microcode datafile 20200616 + + Downgraded microcodes (to a previously shipped revision): + sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 + sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 + * Works around hangs on boot on Skylake-U/Y and Skylake Xeon E3, + https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/31 + * This update *removes* the SRBDS mitigations from the above processors + * Note that Debian had already downgraded 0x406e3 in release 3.20200609.2 + 3.20200609.2~deb9u1 [Thu, 11 Jun 2020 09:29:13 -0300] Henrique de Moraes Holschuh <hmh@debian.org>: * Rebuild for stretch-security, no changes <http://10.200.17.11/4.4-5/#4446507348558188504>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-5] e3313f03ff Bug #51733: intel-microcode_3.20200616.1~deb9u1 doc/errata/staging/intel-microcode.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x662>