suse-su-2025:20424-1
Vulnerability from csaf_suse
Published
2025-06-16 09:28
Modified
2025-06-16 09:28
Summary
Security update for ucode-intel

Notes

Title of the patch
Security update for ucode-intel
Description of the patch
This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250512 release (bsc#1243123): - Security updates for INTEL-SA-01153 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01153.html - CVE-2024-28956: Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel Processors may allow an authenticated user to potentially enable information disclosure via local access. - Security updates for INTEL-SA-01244 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01244.html - CVE-2025-20103: Insufficient resource pool in the core management mechanism for some Intel Processors may allow an authenticated user to potentially enable denial of service via local access. - CVE-2025-20054: Uncaught exception in the core management mechanism for some Intel Processors may allow an authenticated user to potentially enable denial of service via local access. - Security updates for INTEL-SA-01247 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html - CVE-2024-43420: Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom processors may allow an authenticated user to potentially enable information disclosure via local access. - CVE-2025-20623: Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Core processors (10th Generation) may allow an authenticated user to potentially enable information disclosure via local access. - CVE-2024-45332: Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for some Intel Processors may allow an authenticated user to potentially enable information disclosure via local access. - Security updates for INTEL-SA-01322 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01322.html - CVE-2025-24495: Incorrect initialization of resource in the branch prediction unit for some Intel Core Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access. - CVE-2025-20012: Incorrect behavior order for some Intel Core Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access. - Update for functional issues. Refer to Intel Core Ultra 200 V Series Processor (Series2) https://cdrdv2.intel.com/v1/dl/getContent/834774 for details. - Update for functional issues. Refer to Intel Core Ultra 200 V Series Processor https://cdrdv2.intel.com/v1/dl/getContent/827538 for details. - Update for functional issues. Refer to Intel Core Ultra Processor https://cdrdv2.intel.com/v1/dl/getContent/792254 for details. - Update for functional issues. Refer to 14th/13th Generation Intel Core Processor Specification Update https://cdrdv2.intel.com/v1/dl/getContent/740518 for details. - Update for functional issues. Refer to 12th Generation Intel Core Processor Family https://cdrdv2.intel.com/v1/dl/getContent/682436 for details. - Update for functional issues. Refer to 11th Gen Intel Core Processor Specification Update https://cdrdv2.intel.com/v1/dl/getContent/631123 for details. - Update for functional issues. Refer to 10th Gen Intel Core Processor Families Specification Update https://cdrdv2.intel.com/v1/dl/getContent/341079 for details. - Update for functional issues. Refer to 10th Gen Intel Core Processor Families Specification Update https://cdrdv2.intel.com/v1/dl/getContent/615213 for details. - Update for functional issues. Refer to 8th and 9th Generation Intel Core Processor Family Spec Update https://cdrdv2.intel.com/v1/dl/getContent/337346 for details. - Update for functional issues. Refer to 6th Gen Intel Xeon Scalable Processors Specification Update https://cdrdv2.intel.com/v1/dl/getContent/835486 for details. - Update for functional issues. Refer to 5th Gen Intel Xeon Processor Scalable Family https://cdrdv2.intel.com/v1/dl/getContent/793902 for details. - Update for functional issues. Refer to 4th Gen Intel Xeon Scalable Processors Specification Update https://cdrdv2.intel.com/v1/dl/getContent/772415 for details. - Update for functional issues. Refer to 3rd Generation Intel Xeon Scalable Processors Specification Update https://cdrdv2.intel.com/v1/dl/getContent/634897 for details. - Update for functional issues. Refer to 3rd Generation Intel Xeon Scalable Processors Specification Update https://cdrdv2.intel.com/v1/dl/getContent/637780 for details. - Update for functional issues. Refer to 2nd Generation Intel Xeon Processor Scalable Family Specification Update https://cdrdv2.intel.com/v1/dl/getContent/338848 for details. - Update for functional issues. Refer to Intel Xeon 6700-Series Processor Specification Update https://cdrdv2.intel.com/v1/dl/getContent/820922 for details. - Update for functional issues. Refer to Intel Xeon E-2300 Processor Specification Update https://cdrdv2.intel.com/v1/dl/getContent/709192 for details. - Update for functional issues. Refer to Intel Xeon D-2700 Processor Specification Update https://cdrdv2.intel.com/v1/dl/getContent/714071 for details. - Update for functional issues. Refer to Intel Processors and Intel Core i3 N-Series https://cdrdv2.intel.com/v1/dl/getContent/764616 for details. - Update for functional issues. Refer to Intel Pentium Silver and Intel Celeron Processor Specification Update https://cdrdv2.intel.com/v1/dl/getContent/336562 for details. ### New Platforms | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | ARL-U | A1 | 06-b5-00/80 | | 0000000a | Core Ultra Processor (Series2) | ARL-S/HX (8P) | B0 | 06-c6-02/82 | | 00000118 | Core Ultra Processor (Series2) | ARL-H | A1 | 06-c5-02/82 | | 00000118 | Core Ultra Processor (Series2) | GNR-AP/SP | B0 | 06-ad-01/95 | | 010003a2 | Xeon Scalable Gen6 | GNR-AP/SP | H0 | 06-ad-01/20 | | 0a0000d1 | Xeon Scalable Gen6 | LNL | B0 | 06-bd-01/80 | | 0000011f | Core Ultra 200 V Series Processor ### Updated Platforms | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | ADL | C0 | 06-97-02/07 | 00000038 | 0000003a | Core Gen12 | ADL | H0 | 06-97-05/07 | 00000038 | 0000003a | Core Gen12 | ADL | L0 | 06-9a-03/80 | 00000436 | 00000437 | Core Gen12 | ADL | R0 | 06-9a-04/80 | 00000436 | 00000437 | Core Gen12 | ADL-N | N0 | 06-be-00/19 | 0000001c | 0000001d | Core i3-N305/N300, N50/N97/N100/N200, Atom x7211E/x7213E/x7425E | AML-Y42 | V0 | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen10 Mobile | AZB | A0/R0 | 06-9a-04/40 | 00000009 | 0000000a | Intel(R) Atom(R) C1100 | CFL-H | R0 | 06-9e-0d/22 | 00000102 | 00000104 | Core Gen9 Mobile | CLX-SP | B1 | 06-55-07/bf | 05003707 | 05003901 | Xeon Scalable Gen2 | CML-H | R1 | 06-a5-02/20 | 000000fc | 00000100 | Core Gen10 Mobile | CML-S102 | Q0 | 06-a5-05/22 | 000000fc | 00000100 | Core Gen10 | CML-S62 | G1 | 06-a5-03/22 | 000000fc | 00000100 | Core Gen10 | CML-U42 | V0 | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen10 Mobile | CML-U62 V1 | A0 | 06-a6-00/80 | 000000fe | 00000102 | Core Gen10 Mobile | CML-U62 V2 | K1 | 06-a6-01/80 | 000000fc | 00000100 | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen10 Mobile | CPX-SP | A1 | 06-55-0b/bf | 07002904 | 07002b01 | Xeon Scalable Gen3 | EMR-SP | A1 | 06-cf-02/87 | 21000291 | 210002a9 | Xeon Scalable Gen5 | GLK-R | R0 | 06-7a-08/01 | 00000024 | 00000026 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | ICL-D | B0 | 06-6c-01/10 | 010002c0 | 010002d0 | Xeon D-17xx, D-27xx | ICL-U/Y | D1 | 06-7e-05/80 | 000000c6 | 000000ca | Core Gen10 Mobile | ICX-SP | Dx/M1 | 06-6a-06/87 | 0d0003f5 | 0d000404 | Xeon Scalable Gen3 | MTL | C0 | 06-aa-04/e6 | 00000020 | 00000024 | Core Ultra Processor | RKL-S | B0 | 06-a7-01/02 | 00000063 | 00000064 | Core Gen11 | RPL-E/HX/S | B0 | 06-b7-01/32 | 0000012c | 0000012f | Core Gen13/Gen14 | RPL-H/P/PX 6+8 | J0 | 06-ba-02/e0 | 00004124 | 00004128 | Core Gen13 | RPL-HX/S | C0 | 06-bf-02/07 | 00000038 | 0000003a | Core Gen13/Gen14 | RPL-S | H0 | 06-bf-05/07 | 00000038 | 0000003a | Core Gen13/Gen14 | RPL-U 2+8 | Q0 | 06-ba-03/e0 | 00004124 | 00004128 | Core Gen13 | SPR-HBM | Bx | 06-8f-08/10 | 2c0003e0 | 2c0003f7 | Xeon Max | SPR-SP | E4/S2 | 06-8f-07/87 | 2b000620 | 2b000639 | Xeon Scalable Gen4 | SPR-SP | E5/S3 | 06-8f-08/87 | 2b000620 | 2b000639 | Xeon Scalable Gen4 | SRF-SP | C0 | 06-af-03/01 | 03000330 | 03000341 | Xeon 6700-Series Processors with E-Cores | TGL | B0/B1 | 06-8c-01/80 | 000000b8 | 000000bc | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | 00000052 | 00000056 | Core Gen11 Mobile | TGL-R | C0 | 06-8c-02/c2 | 00000038 | 0000003c | Core Gen11 Mobile | TWL | N0 | 06-be-00/19 | 0000001c | 0000001d | Core i3-N305/N300, N50/N97/N100/N200, Atom x7211E/x7213E/x7425E | WHL-U | V0 | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen8 Mobile
Patchnames
SUSE-SLE-Micro-6.1-148
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).


To clipboard 

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for ucode-intel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for ucode-intel fixes the following issues:\n\nIntel CPU Microcode was updated to the 20250512 release (bsc#1243123):\n\n  - Security updates for INTEL-SA-01153\n    https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01153.html\n    - CVE-2024-28956: Exposure of Sensitive Information in Shared\n      Microarchitectural Structures during Transient Execution for some\n      Intel Processors may allow an authenticated user to potentially\n      enable information disclosure via local access.\n\n  - Security updates for INTEL-SA-01244\n    https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01244.html\n    - CVE-2025-20103: Insufficient resource pool in the core management\n      mechanism for some Intel Processors may allow an authenticated user\n      to potentially enable denial of service via local access.\n    - CVE-2025-20054: Uncaught exception in the core management\n      mechanism for some Intel Processors may allow an authenticated user\n      to potentially enable denial of service via local access.\n\n  - Security updates for INTEL-SA-01247\n    https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01247.html\n     - CVE-2024-43420: Exposure of sensitive information caused by\n       shared microarchitectural predictor state that influences transient\n       execution for some Intel Atom processors may allow an authenticated\n       user to potentially enable information disclosure via local access.\n     - CVE-2025-20623: Exposure of sensitive information caused by\n       shared microarchitectural predictor state that influences transient\n       execution for some Intel Core processors (10th Generation) may allow\n       an authenticated user to potentially enable information disclosure\n       via local access.\n   - CVE-2024-45332: Exposure of sensitive information caused by shared\n     microarchitectural predictor state that influences transient execution\n     in the indirect branch predictors for some Intel Processors may allow\n     an authenticated user to potentially enable information disclosure\n     via local access.\n\n  - Security updates for INTEL-SA-01322\n    https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01322.html\n    - CVE-2025-24495:  Incorrect initialization of resource in the branch\n      prediction unit for some Intel Core Ultra Processors may allow an\n      authenticated user to potentially enable information disclosure via\n      local access.\n    - CVE-2025-20012: Incorrect behavior order for some Intel Core Ultra\n      Processors may allow an unauthenticated user to potentially enable\n      information disclosure via physical access.\n\n  - Update for functional issues. Refer to Intel Core Ultra 200 V Series\n    Processor (Series2) https://cdrdv2.intel.com/v1/dl/getContent/834774\n    for details.\n  - Update for functional issues. Refer to Intel Core Ultra 200 V Series\n    Processor https://cdrdv2.intel.com/v1/dl/getContent/827538 for details.\n  - Update for functional issues. Refer to Intel Core Ultra Processor\n    https://cdrdv2.intel.com/v1/dl/getContent/792254 for details.\n  - Update for functional issues. Refer to 14th/13th\n    Generation Intel Core Processor Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/740518 for details.\n  - Update for functional issues. Refer to 12th Generation Intel Core\n    Processor Family https://cdrdv2.intel.com/v1/dl/getContent/682436\n    for details.\n  - Update for functional issues. Refer to 11th Gen Intel Core Processor\n    Specification Update https://cdrdv2.intel.com/v1/dl/getContent/631123\n    for details.\n  - Update for functional issues. Refer to 10th Gen\n    Intel Core Processor Families Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/341079 for details.\n  - Update for functional issues. Refer to 10th Gen\n    Intel Core Processor Families Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/615213 for details.\n  - Update for functional issues. Refer to 8th and 9th\n    Generation Intel Core Processor Family Spec Update\n    https://cdrdv2.intel.com/v1/dl/getContent/337346 for details.\n  - Update for functional issues. Refer to 6th Gen\n    Intel Xeon Scalable Processors Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/835486 for details.\n  - Update for functional issues. Refer to 5th Gen Intel Xeon Processor\n    Scalable Family https://cdrdv2.intel.com/v1/dl/getContent/793902\n    for details.\n  - Update for functional issues. Refer to 4th Gen\n    Intel Xeon Scalable Processors Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/772415 for details.\n  - Update for functional issues. Refer to 3rd Generation\n    Intel Xeon Scalable Processors Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/634897 for details.\n  - Update for functional issues. Refer to 3rd Generation\n    Intel Xeon Scalable Processors Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/637780 for details.\n  - Update for functional issues. Refer to 2nd Generation\n    Intel Xeon Processor Scalable Family Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/338848 for details.\n  - Update for functional issues. Refer to Intel\n    Xeon 6700-Series Processor Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/820922 for details.\n  - Update for functional issues. Refer to Intel Xeon E-2300 Processor\n    Specification Update https://cdrdv2.intel.com/v1/dl/getContent/709192\n    for details.\n  - Update for functional issues. Refer to Intel Xeon D-2700 Processor\n    Specification Update https://cdrdv2.intel.com/v1/dl/getContent/714071\n    for details.\n  - Update for functional issues. Refer to Intel Processors and Intel\n    Core i3 N-Series https://cdrdv2.intel.com/v1/dl/getContent/764616\n    for details.\n  - Update for functional issues. Refer to Intel Pentium\n    Silver and Intel Celeron Processor Specification Update\n    https://cdrdv2.intel.com/v1/dl/getContent/336562 for details.\n\n  ### New Platforms\n\n  | Processor      | Stepping | F-M-S/PI    | Old Ver  | New Ver  | Products\n  |:---------------|:---------|:------------|:---------|:---------|:---------\n  | ARL-U          | A1       | 06-b5-00/80 |          | 0000000a | Core Ultra Processor (Series2)\n  | ARL-S/HX (8P)  | B0       | 06-c6-02/82 |          | 00000118 | Core Ultra Processor (Series2)\n  | ARL-H          | A1       | 06-c5-02/82 |          | 00000118 | Core Ultra Processor (Series2)\n  | GNR-AP/SP      | B0       | 06-ad-01/95 |          | 010003a2 | Xeon Scalable Gen6\n  | GNR-AP/SP      | H0       | 06-ad-01/20 |          | 0a0000d1 | Xeon Scalable Gen6\n  | LNL            | B0       | 06-bd-01/80 |          | 0000011f | Core Ultra 200 V Series Processor\n\n  ### Updated Platforms\n\n  | Processor      | Stepping | F-M-S/PI    | Old Ver  | New Ver  | Products\n  |:---------------|:---------|:------------|:---------|:---------|:---------\n  | ADL            | C0       | 06-97-02/07 | 00000038 | 0000003a | Core Gen12\n  | ADL            | H0       | 06-97-05/07 | 00000038 | 0000003a | Core Gen12\n  | ADL            | L0       | 06-9a-03/80 | 00000436 | 00000437 | Core Gen12\n  | ADL            | R0       | 06-9a-04/80 | 00000436 | 00000437 | Core Gen12 \n  | ADL-N          | N0       | 06-be-00/19 | 0000001c | 0000001d | Core i3-N305/N300,\n                                                                    N50/N97/N100/N200,\n                                                                    Atom x7211E/x7213E/x7425E\n  | AML-Y42        | V0       | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen10 Mobile\n  | AZB            | A0/R0    | 06-9a-04/40 | 00000009 | 0000000a | Intel(R) Atom(R) C1100\n  | CFL-H          | R0       | 06-9e-0d/22 | 00000102 | 00000104 | Core Gen9 Mobile\n  | CLX-SP         | B1       | 06-55-07/bf | 05003707 | 05003901 | Xeon Scalable Gen2\n  | CML-H          | R1       | 06-a5-02/20 | 000000fc | 00000100 | Core Gen10 Mobile\n  | CML-S102       | Q0       | 06-a5-05/22 | 000000fc | 00000100 | Core Gen10\n  | CML-S62        | G1       | 06-a5-03/22 | 000000fc | 00000100 | Core Gen10\n  | CML-U42        | V0       | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen10 Mobile\n  | CML-U62 V1     | A0       | 06-a6-00/80 | 000000fe | 00000102 | Core Gen10 Mobile\n  | CML-U62 V2     | K1       | 06-a6-01/80 | 000000fc | 00000100 | Core Gen10 Mobile\n  | CML-Y42        | V0       | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen10 Mobile\n  | CPX-SP         | A1       | 06-55-0b/bf | 07002904 | 07002b01 | Xeon Scalable Gen3\n  | EMR-SP         | A1       | 06-cf-02/87 | 21000291 | 210002a9 | Xeon Scalable Gen5\n  | GLK-R          | R0       | 06-7a-08/01 | 00000024 | 00000026 | Pentium J5040/N5030,\n                                                                    Celeron J4125/J4025/N4020/N4120\n  | ICL-D          | B0       | 06-6c-01/10 | 010002c0 | 010002d0 | Xeon D-17xx, D-27xx\n  | ICL-U/Y        | D1       | 06-7e-05/80 | 000000c6 | 000000ca | Core Gen10 Mobile\n  | ICX-SP         | Dx/M1    | 06-6a-06/87 | 0d0003f5 | 0d000404 | Xeon Scalable Gen3\n  | MTL            | C0       | 06-aa-04/e6 | 00000020 | 00000024 | Core Ultra Processor\n  | RKL-S          | B0       | 06-a7-01/02 | 00000063 | 00000064 | Core Gen11\n  | RPL-E/HX/S     | B0       | 06-b7-01/32 | 0000012c | 0000012f | Core Gen13/Gen14\n  | RPL-H/P/PX 6+8 | J0       | 06-ba-02/e0 | 00004124 | 00004128 | Core Gen13\n  | RPL-HX/S       | C0       | 06-bf-02/07 | 00000038 | 0000003a | Core Gen13/Gen14\n  | RPL-S          | H0       | 06-bf-05/07 | 00000038 | 0000003a | Core Gen13/Gen14\n  | RPL-U 2+8      | Q0       | 06-ba-03/e0 | 00004124 | 00004128 | Core Gen13\n  | SPR-HBM        | Bx       | 06-8f-08/10 | 2c0003e0 | 2c0003f7 | Xeon Max\n  | SPR-SP         | E4/S2    | 06-8f-07/87 | 2b000620 | 2b000639 | Xeon Scalable Gen4\n  | SPR-SP         | E5/S3    | 06-8f-08/87 | 2b000620 | 2b000639 | Xeon Scalable Gen4\n  | SRF-SP         | C0       | 06-af-03/01 | 03000330 | 03000341 | Xeon 6700-Series Processors with E-Cores\n  | TGL            | B0/B1    | 06-8c-01/80 | 000000b8 | 000000bc | Core Gen11 Mobile\n  | TGL-H          | R0       | 06-8d-01/c2 | 00000052 | 00000056 | Core Gen11 Mobile\n  | TGL-R          | C0       | 06-8c-02/c2 | 00000038 | 0000003c | Core Gen11 Mobile\n  | TWL            | N0       | 06-be-00/19 | 0000001c | 0000001d | Core i3-N305/N300,\n                                                                    N50/N97/N100/N200,\n                                                                    Atom x7211E/x7213E/x7425E\n  | WHL-U          | V0       | 06-8e-0c/94 | 000000fc | 00000100 | Core Gen8 Mobile\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Micro-6.1-148",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20424-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2025:20424-1",
        "url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520424-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2025:20424-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2025-June/040391.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1243123",
        "url": "https://bugzilla.suse.com/1243123"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-28956 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-28956/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-43420 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-43420/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-45332 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-45332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-20012 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-20012/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-20054 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-20054/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-20103 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-20103/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-20623 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-20623/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-24495 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-24495/"
      }
    ],
    "title": "Security update for ucode-intel",
    "tracking": {
      "current_release_date": "2025-06-16T09:28:11Z",
      "generator": {
        "date": "2025-06-16T09:28:11Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2025:20424-1",
      "initial_release_date": "2025-06-16T09:28:11Z",
      "revision_history": [
        {
          "date": "2025-06-16T09:28:11Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ucode-intel-20250512-slfo.1.1_1.1.x86_64",
                "product": {
                  "name": "ucode-intel-20250512-slfo.1.1_1.1.x86_64",
                  "product_id": "ucode-intel-20250512-slfo.1.1_1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Micro 6.1",
                "product": {
                  "name": "SUSE Linux Micro 6.1",
                  "product_id": "SUSE Linux Micro 6.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sl-micro:6.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ucode-intel-20250512-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        },
        "product_reference": "ucode-intel-20250512-slfo.1.1_1.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-28956",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-28956"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-28956",
          "url": "https://www.suse.com/security/cve/CVE-2024-28956"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2024-28956",
          "url": "https://bugzilla.suse.com/1242006"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-28956"
    },
    {
      "cve": "CVE-2024-43420",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-43420"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-43420",
          "url": "https://www.suse.com/security/cve/CVE-2024-43420"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2024-43420",
          "url": "https://bugzilla.suse.com/1242006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243451 for CVE-2024-43420",
          "url": "https://bugzilla.suse.com/1243451"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-43420"
    },
    {
      "cve": "CVE-2024-45332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-45332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-45332",
          "url": "https://www.suse.com/security/cve/CVE-2024-45332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2024-45332",
          "url": "https://bugzilla.suse.com/1242006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243180 for CVE-2024-45332",
          "url": "https://bugzilla.suse.com/1243180"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-45332"
    },
    {
      "cve": "CVE-2025-20012",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-20012"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect behavior order for some Intel(R) Core(tm) Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-20012",
          "url": "https://www.suse.com/security/cve/CVE-2025-20012"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2025-20012",
          "url": "https://bugzilla.suse.com/1242006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243123 for CVE-2025-20012",
          "url": "https://bugzilla.suse.com/1243123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-20012"
    },
    {
      "cve": "CVE-2025-20054",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-20054"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Uncaught exception in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-20054",
          "url": "https://www.suse.com/security/cve/CVE-2025-20054"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2025-20054",
          "url": "https://bugzilla.suse.com/1242006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243123 for CVE-2025-20054",
          "url": "https://bugzilla.suse.com/1243123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-20054"
    },
    {
      "cve": "CVE-2025-20103",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-20103"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient resource pool in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-20103",
          "url": "https://www.suse.com/security/cve/CVE-2025-20103"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2025-20103",
          "url": "https://bugzilla.suse.com/1242006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243123 for CVE-2025-20103",
          "url": "https://bugzilla.suse.com/1243123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-20103"
    },
    {
      "cve": "CVE-2025-20623",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-20623"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R) Core(tm) processors (10th Generation) may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-20623",
          "url": "https://www.suse.com/security/cve/CVE-2025-20623"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2025-20623",
          "url": "https://bugzilla.suse.com/1242006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243454 for CVE-2025-20623",
          "url": "https://bugzilla.suse.com/1243454"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-20623"
    },
    {
      "cve": "CVE-2025-24495",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-24495"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect initialization of resource in the branch prediction unit for some Intel(R) Core(tm) Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-24495",
          "url": "https://www.suse.com/security/cve/CVE-2025-24495"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1242006 for CVE-2025-24495",
          "url": "https://bugzilla.suse.com/1242006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243123 for CVE-2025-24495",
          "url": "https://bugzilla.suse.com/1243123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:ucode-intel-20250512-slfo.1.1_1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-06-16T09:28:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-24495"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.