Speculative Race Conditions (SRCs), March 12, 2024
Description: Researchers from IBM Research Europe and Vrije Universiteit Amsterdam have published a paper titled “GhostRace: Exploiting and Mitigating Speculative Race Conditions.” AMD recommends following previously published guidance regarding Spectre type attacks:
AMD-SB-7016
CVE-2024-2193
AMD-SB-7016
2024-03-12
4th Gen Intel® Xeon® Processor Advisory, March 12, 2024
Description: Potential security vulnerabilities in some 4th Generation Intel® Xeon® Processors when using Intel® Software Guard Extensions (SGX) or Intel® Trust Domain Extensions (TDX) may allow escalation of privilege or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities.
1. Intel Code:
FCP/DNP already merge the patch. (PLR5) BIOS:R01.02.0001
CYP/TNP BIOS R01.01.0009 Next BIOS will fix.
2. AMI Code:
For Eagle Stream Platform: 5.32_EagleStreamCrb_0ACOR_098
INTEL-SA-00986 –4th Gen Intel® Xeon® Processor Advisory
CVE-2023-32666
INTEL-SA-00986
2024-03-12
2024.1 IPU - Intel® Xeon® Processor Advisory, March 12, 2024
Description: A potential security vulnerability in some 3rd and 4th Generation Intel® Xeon® Processors when using Intel® Software Guard Extensions (SGX) or Intel® Trust Domain Extensions (TDX) may allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability.
1. Intel Code:
FCP/DNP already merge the patch. (PLR5) BIOS:R01.02.0001
CYP/TNP BIOS R01.01.0009 Next BIOS will fix.
2. AMI Code:
For Eagle Stream Platform: 5.32_EagleStreamCrb_0ACOR_098
Description: A potential security vulnerability in BIOS firmware for some Intel® Processors may allow escalation of privilege. Intel is releasing BIOS updates to mitigate this potential vulnerability.
1. Intel Code:
FCP/DNP already merge the patch. (PLR5) BIOS:R01.02.0001
CYP/TNP BIOS R01.01.0009 Next BIOS will fix.
2. AMI Code:
For Eagle Stream Platform: 5.32_EagleStreamCrb_0ACOR_098
INTEL-SA-00929 –2024.1 IPU - BIOS Advisory
CVE-2023-32282
INTEL-SA-00929
2024-03-12
2024.2 IPU - Intel® Chipset Software and SPS Advisory, March 12, 2024
Description: Potential security vulnerabilities in the Intel® Converged Security Management Engine (CSME) installer, Intel® Local Manageability Service software and Intel® Server Platform Servcies (SPS) may allow information disclosure, escalation of privilege, or denial of service.
1. Intel Code:
FCP/DNP already merge the patch. (PLR5) BIOS:R01.02.0001
CYP/TNP BIOS R01.01.0009 Next BIOS will fix.
2. AMI Code:
For Eagle Stream Platform: 5.32_EagleStreamCrb_0ACOR_098
INTEL-SA-00923 –2024.2 IPU - Intel® Chipset Software and SPS Advisory
CVE-2023-27502
CVE-2023-32633
CVE-2023-28389
CVE-2023-35191
INTEL-SA-00923
2024-03-12
2024.1 IPU - Intel® Atom® Processor Advisory, March 12, 2024
Description: A potential security vulnerability in some Intel® Atom® Processors may allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability.
1. Intel Code:
FCP/DNP already merge the patch. (PLR5) BIOS:R01.02.0001
CYP/TNP BIOS R01.01.0009 Next BIOS will fix.
2. AMI Code:
For Eagle Stream Platform: 5.32_EagleStreamCrb_0ACOR_098
AMD Embedded Processors Vulnerabilities – February 2024, February 13, 2024
Description: Potential vulnerabilities in AMD Embedded processors were reported, and mitigations are being provided through Platform Initialization (PI) firmware packages.
AMD-SB-5001
CVE-2023-20526
CVE-2023-20521
CVE-2022-23830
CVE-2021-46766
CVE-2021-46762
CVE-2021-26345
CVE-2023-20571
CVE-2023-20566
CVE-2023-20533
CVE-2021-46774
CVE-2021-46754
CVE-2021-26393
CVE-2021-26392
CVE-2023-20565
CVE-2023-20563
CVE-2022-23821
CVE-2022-23820
CVE-2021-46757
CVE-2020-12931
CVE-2020-12930
AMD-SB-5001
2024-02-13
Intel® SGX DCAP Software Advisory, February 13, 2024
Description: A potential security vulnerability in some Intel® Software Guard Extensions (SGX) Data Center Attestation Primitives (DCAP) software may allow information disclosure. Intel is releasing software updates to mitigate this potential vulnerability.
INTEL-SA-01014 –Intel® SGX DCAP Software Advisory
CVE-2023-42776
INTEL-SA-01014
2024-02-13
Intel® PROSet/Wireless and Intel® Killer™ Wi-Fi Software Advisory, February 13, 2024
Description: Potential security vulnerabilities in some Intel® PROSet/Wireless and Intel® Killer™ Wi-Fi software may allow escalation of privilege, information disclosure or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities.
INTEL-SA-00947–Intel® PROSet/Wireless and Intel® Killer™ Wi-Fi Software Advisory
This website uses essential and analytics cookies. You can choose your option by clicking "Accept All Cookies" or "Accept Essential Cookies" as Cookies Preferences.