WHAT ARE YOU LOOKING FOR?

Ubuntu Security Notice USN-7077-1 ≈ Packet Storm

Alertes Affichages : 262

Home[1] Files[2] News[3] &[SERVICES_TAB] Contact[4] Add New[5]

Ubuntu Security Notice USN-7077-1[6]
Authored by Ubuntu[7] | Site security.ubuntu.com[8]

Ubuntu Security Notice 7077-1 - Enrique Nissim and Krzysztof Okupski discovered that some AMD processors did not properly restrict access to the System Management Mode configuration when the SMM Lock was enabled. A privileged local attacker could possibly use this issue to further escalate their privileges and execute arbitrary code within the processor's firmware layer.

systems | linux[9], ubuntu[10]
advisories | CVE-2023-31315[11]
SHA-256 | 1b93fed31deb5ceab827b377461e759d44430df07935c76d9f6670528d1a2507
Download[12] | Favorite[13] | View[14]

Change Mirror[15] Download[16]

==========================================================================
Ubuntu Security Notice USN-7077-1
October 21, 2024
amd64-microcode vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
Summary:
AMD processors may allow a privileged local attacker to further escalate their
privileged and execute arbitrary code within the processor's firmware layer.
Software Description:
- amd64-microcode: Platform firmware and microcode for AMD CPUs and SoCs
Details:
Enrique Nissim and Krzysztof Okupski discovered that some AMD processors
did not properly restrict access to the System Management Mode (SMM)
configuration when the SMM Lock was enabled. A privileged local attacker
could possibly use this issue to further escalate their privileges and
execute arbitrary code within the processor's firmware layer.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.10
amd64-microcode                 3.20240116.2+nmu1ubuntu1.1
Ubuntu 24.04 LTS
amd64-microcode                 3.20231019.1ubuntu2.1
Ubuntu 22.04 LTS
amd64-microcode                 3.20191218.1ubuntu2.3
Ubuntu 20.04 LTS
amd64-microcode                 3.20191218.1ubuntu1.3
Ubuntu 18.04 LTS
amd64-microcode                 3.20191021.1+really3.20181128.1~ubuntu0.18.04.1+esm3
Available with Ubuntu Pro
Ubuntu 16.04 LTS
amd64-microcode                 3.20191021.1+really3.20180524.1~ubuntu0.16.04.2+esm3
Available with Ubuntu Pro
After a standard system update you need to reboot your computer to make
all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7077-1
CVE-2023-31315
Package Information:
https://launchpad.net/ubuntu/+source/amd64-microcode/3.20240116.2+nmu1ubuntu1.1
https://launchpad.net/ubuntu/+source/amd64-microcode/3.20231019.1ubuntu2.1
https://launchpad.net/ubuntu/+source/amd64-microcode/3.20191218.1ubuntu2.3
https://launchpad.net/ubuntu/+source/amd64-microcode/3.20191218.1ubuntu1.3

Login[17] or Register[18] to add favorites

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa

File Tags

File Archives

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links
News by Month[113]
News Tags[114]
Files by Month[115]
File Tags[116]
File Directory[117]
About Us
History & Purpose[118]
Contact Information[119]
Terms of Service[120]
Privacy Statement[121]
Copyright Information[122]
Services
Security Services[123]
Hosting By
Rokasec[124]
close

Read more

Image
Back To Top

Pensée du jour :

Ce que l'homme a fait ,

l'homme peut le défaire.

 

"No secure path in the world"

Category

Popular Sections

About