-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 16 Feb 2025 18:34:38 -0300 Source: intel-microcode Architecture: source Version: 3.20250211.1 Distribution: unstable Urgency: medium Maintainer: Henrique de Moraes Holschuh <hmh@debian.org> Changed-By: Henrique de Moraes Holschuh <hmh@debian.org> Closes: 1095805 Changes: intel-microcode (3.20250211.1) unstable; urgency=medium . * New upstream microcode datafile 20250211 (closes: #1095805) - Mitigations for INTEL-SA-01166 (CVE-2024-31068) Improper Finite State Machines (FSMs) in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via local access. - Mitigations for INTEL-SA-01213 (CVE-2024-36293) Improper access control in the EDECCSSA user leaf function for some Intel Processors with Intel SGX may allow an authenticated user to potentially enable denial of service via local access. Intel disclosed that some 9th Generation Intel Core processor models were already fixed by a previous microcode update. - Mitigations for INTEL-SA-01139 (CVE-2023-43758, CVE-2023-34440, CVE-2024-24582, CVE-2024-29214, CVE-2024-28127, CVE-2024-39279, CVE-2024-31157, CVE-2024-28047) Improper input validation, insufficient granularity of access control, and improper initialization issues in UEFI firmware for some Intel processors may allow escalation of privilege, denial of service, or information disclosure. An UEFI firmware update is needed for complete mitigation. - Mitigations for INTEL-SA-01228 (CVE-2024-39355) Improper handling of physical or environmental conditions in some 13th and 14th Generation Intel Core Processors may allow an authenticated user to enable denial of service via local access. An UEFI firmware update may be required for complete mitigation. - Mitigations for INTEL-SA-01194 (CVE-2024-37020) Sequence of processor instructions leads to unexpected behavior in the Intel DSA V1.0 for some Intel Xeon Processors may allow an authenticated user to potentially enable denial of service via local access. - Fixes for unspecified functional issues on several processor models * New microcodes or new extended signatures: sig 0x000a06f3, pf_mask 0x01, 2024-11-22, rev 0x3000330, size 1533952 sig 0x000b06f6, pf_mask 0x07, 2024-08-01, rev 0x0038, size 225280 sig 0x000b06f7, pf_mask 0x07, 2024-08-01, rev 0x0038, size 225280 sig 0x000b0674, pf_mask 0x32, 2024-09-25, rev 0x012c, size 211968 * Updated microcodes: sig 0x000606a6, pf_mask 0x87, 2024-08-02, rev 0xd0003f5, size 308224 sig 0x000606c1, pf_mask 0x10, 2024-08-08, rev 0x10002c0, size 300032 sig 0x000806f8, pf_mask 0x87, 2024-07-30, rev 0x2b000620, size 589824 sig 0x000806f7, pf_mask 0x87, 2024-07-30, rev 0x2b000620 sig 0x000806f6, pf_mask 0x87, 2024-07-30, rev 0x2b000620 sig 0x000806f5, pf_mask 0x87, 2024-07-30, rev 0x2b000620 sig 0x000806f4, pf_mask 0x87, 2024-07-30, rev 0x2b000620 sig 0x000806f8, pf_mask 0x10, 2024-07-30, rev 0x2c0003e0, size 622592 sig 0x000806f6, pf_mask 0x10, 2024-07-30, rev 0x2c0003e0 sig 0x000806f5, pf_mask 0x10, 2024-07-30, rev 0x2c0003e0 sig 0x000806f4, pf_mask 0x10, 2024-07-30, rev 0x2c0003e0 sig 0x00090672, pf_mask 0x07, 2024-08-01, rev 0x0038, size 225280 sig 0x00090675, pf_mask 0x07, 2024-08-01, rev 0x0038 sig 0x000b06f2, pf_mask 0x07, 2024-08-01, rev 0x0038 sig 0x000b06f5, pf_mask 0x07, 2024-08-01, rev 0x0038 sig 0x000906a3, pf_mask 0x80, 2024-08-01, rev 0x0436, size 223232 sig 0x000906a4, pf_mask 0x80, 2024-08-01, rev 0x0436 sig 0x000906a4, pf_mask 0x40, 2024-07-29, rev 0x0009, size 119808 sig 0x000906ea, pf_mask 0x22, 2024-07-28, rev 0x00fa, size 105472 sig 0x000906ed, pf_mask 0x22, 2024-07-31, rev 0x0102, size 106496 sig 0x000a0671, pf_mask 0x02, 2024-08-01, rev 0x0063, size 108544 sig 0x000b0671, pf_mask 0x32, 2024-09-25, rev 0x012c, size 211968 sig 0x000b06a2, pf_mask 0xe0, 2024-07-31, rev 0x4124, size 220160 sig 0x000b06a3, pf_mask 0xe0, 2024-07-31, rev 0x4124 sig 0x000b06a8, pf_mask 0xe0, 2024-07-31, rev 0x4124 sig 0x000b06e0, pf_mask 0x19, 2024-09-06, rev 0x001c, size 138240 sig 0x000c06f2, pf_mask 0x87, 2024-07-30, rev 0x21000291, size 560128 sig 0x000c06f1, pf_mask 0x87, 2024-07-30, rev 0x21000291 * source: update symlinks to reflect id of the latest release, 20250211 * Update changelog for 3.20240813.1 with new information Checksums-Sha1: a2e8712e5ad5ef5a87af3a65e2bb8ca693d73992 1876 intel-microcode_3.20250211.1.dsc 1aaef10792bc048994cfe1379178791500f7c386 9227240 intel-microcode_3.20250211.1.tar.xz 5175da4200dae468480609d1470eb3288011dee2 6507 intel-microcode_3.20250211.1_amd64.buildinfo Checksums-Sha256: 569eae26832477ba698e934e101dde9c822f1bf3eaa356fe276d60370364984c 1876 intel-microcode_3.20250211.1.dsc 06b7aca49790d673623cb42f7a62a517d82555ce96371d2967b568d6e30fd787 9227240 intel-microcode_3.20250211.1.tar.xz 10e983f599d4794b6df90d9487ae10d43a1aa2849b634fb468edf3bce199b4fd 6507 intel-microcode_3.20250211.1_amd64.buildinfo Files: 4c5983e000a6b2d670ae49eb62b5cacf 1876 non-free-firmware/admin standard intel-microcode_3.20250211.1.dsc 178a9f14a51ebd1b939135e14909fbcd 9227240 non-free-firmware/admin standard intel-microcode_3.20250211.1.tar.xz dfd4cf648c8d7d94c7120c3bc0b694e7 6507 non-free-firmware/admin standard intel-microcode_3.20250211.1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEpvbMGUAhfu+gsYOwlOXoPKamj0cFAmeyXvEACgkQlOXoPKam j0cSMBAAg5KWGRpCb2xYrjNW3wZLsCO4XQXhDcZOWM41UuQqANsgSi+FCMwki5I1 XGvXVFq7ngea0i+KPMX2Y5uwV0Rd4dGWkm2OEIdomA4M4vZ4/fNmxJ+kktWv55Nl jYOISUnQntaU/agFYFKfSWu4qUdtiLr0LRd83YoeKfjbRfSKulxZBXTUeLhwgWQg zznZDLfj7n316VRspjwufe7h0Y2YrSdDmMOBXK3Swr4OLFZRhpDaapf9ZIVIZxBF JZhQclXSA3g7T0ZbpT8i90ebQpAI/I8qA0Y8ig0SgbhTiP8PJJLgbRinTQEgP8Fk FBEnnfSxGXBcKVnE94BobLFqAcXQy+JvubtGjVEtTNt18Bs+gWu01ia6g9osl7Rn IFdpAv/BrHEtv211lERa20SjYCghEYGGUeSvS5qeMA+7jHp6QwaoImyDb93SiJWI FCebXO7g0WBeKqsLxQtbkrmPO7MTZxpnymCt7PXKWDUUuHpNaTbNjbUiOFENa32+ 7CDypEd6Tefu1paJG4Yikloil3bJWdXR7Bm8cY/rl5yiUIpl2K4WsD4rP/QGAaWk 59Wp0SUoVqBT8nGH0Y82ZWUGNM4oo1qqJiBUCJ3k20uEivSoh7qTiYfVJ6lFI0nE ZNpnt+cX/QvtSTkR7ujrqS3vRhmjHUt2H45Bl3nEG23VUugOPUw= =2R1K -----END PGP SIGNATURE-----
