[CLSA-2024:1728478701] Fix CVE(s): CVE-2023-31315

Type:

security

Severity:

Important

Release date:

2024-10-09 12:58:24 UTC

Description:

   * New microcode update packages from AMD upstream up to 2024-08-11:
     - Update AMD CPU microcode for processor family 0x19:
       cpuid:0x00A00F10(ver:0x0A00107A), cpuid:0x00A10F12(ver:0x0A101248),
       cpuid:0x00AA0F02(ver:0x0AA00215), cpuid:0x00A00F12(ver:0x0A001238),
       cpuid:0x00A10F11(ver:0x0A101148), cpuid:0x00A00F11(ver:0x0A0011D5);
     - Update AMD CPU microcode for processor family 0x17:
       cpuid:0x00800F12(ver:0x0800126F), cpuid:0x00830F10(ver:0x0830107C);
   * SECURITY UPDATE: Fix improper validation in a model-specific register
     (MSR) could allow a malicious program with ring0 access to modify SMM
     configuration while SMI lock is enabled, potentially leading to arbitrary
     code execution.
     - CVE-2023-31315

Updated packages:

amd64-microcode_3.20240811.1ubuntu0.18.04.1+tuxcare.els1_amd64.deb
sha:68ecd41df166fa3ac7a2f75c10a72ed77cf2a548

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.