Source: intel-microcode Version: 3.20220207.1 Severity: important Tags: security upstream fixed-upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team <t...@security.debian.org> Control: found -1 3.20220207.1~deb11u1 Control: found -1 3.20210608.2~deb10u1
Hi, The following vulnerability was published for intel-microcode. CVE-2022-21151[0]: | Processor optimization removal or modification of security-critical | code for some Intel(R) Processors may allow an authenticated user to | potentially enable information disclosure via local access. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2022-21151 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151 [1] https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00617.html [2] https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20220510 Regards, Salvatore
