Bug#1055962: marked as done (intel-microcode: CVE-2023-23583: INTEL-SA-00950)

[Debian Bug Tracking System]

Your message dated Thu, 16 Nov 2023 12:03:56 +0000
with message-id <e1r3b6c-007ojy...@fasolo.debian.org>
and subject line Bug#1055962: fixed in intel-microcode 3.20231114.1
has caused the Debian Bug report #1055962,
regarding intel-microcode: CVE-2023-23583: INTEL-SA-00950
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1055962: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055962
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: intel-microcode
Version: 3.20230808.1
Severity: grave
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team <t...@security.debian.org>
Control: found -1 3.20230808.1~deb12u1
Control: found -1 3.20230808.1~deb11u1

Hi,

The following vulnerability was published for intel-microcode.

CVE-2023-23583[0]:
| Sequence of processor instructions leads to unexpected behavior for
| some Intel(R) Processors may allow an authenticated user to
| potentially enable escalation of privilege and/or information
| disclosure and/or denial of service via local access.


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2023-23583
    https://www.cve.org/CVERecord?id=CVE-2023-23583
[1] 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00950.html

Regards,
Salvatore

--- End Message ---

--- Begin Message ---

Source: intel-microcode
Source-Version: 3.20231114.1
Done: Henrique de Moraes Holschuh <h...@debian.org>

We believe that the bug you reported is fixed in the latest version of
intel-microcode, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1055...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Henrique de Moraes Holschuh <h...@debian.org> (supplier of updated 
intel-microcode package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 16 Nov 2023 08:09:43 -0300
Source: intel-microcode
Architecture: source
Version: 3.20231114.1
Distribution: unstable
Urgency: medium
Maintainer: Henrique de Moraes Holschuh <h...@debian.org>
Changed-By: Henrique de Moraes Holschuh <h...@debian.org>
Closes: 1055962
Changes:
 intel-microcode (3.20231114.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20231114 (closes: #1055962)
     Mitigations for "reptar", INTEL-SA-00950 (CVE-2023-23583)
     Sequence of processor instructions leads to unexpected behavior for some
     Intel(R) Processors, may allow an authenticated user to potentially enable
     escalation of privilege and/or information disclosure and/or denial of
     service via local access.
     Note: "retvar" on 4th gen Xeon Scalable (sig 0x806f8 pfm 0x87), 12th gen
     Core mobile (sig 0x906a4 pfm 0x80), 13th gen Core desktop (sig 0xb0671 pfm
     0x01) were already mitigated by a previous microcode update.
   * Fixes for unspecified functional issues
   * Updated microcodes:
     sig 0x000606a6, pf_mask 0x87, 2023-09-01, rev 0xd0003b9, size 299008
     sig 0x000606c1, pf_mask 0x10, 2023-09-08, rev 0x1000268, size 290816
     sig 0x000706e5, pf_mask 0x80, 2023-09-03, rev 0x00c2, size 113664
     sig 0x000806c1, pf_mask 0x80, 2023-09-07, rev 0x00b4, size 111616
     sig 0x000806c2, pf_mask 0xc2, 2023-09-07, rev 0x0034, size 98304
     sig 0x000806d1, pf_mask 0xc2, 2023-09-07, rev 0x004e, size 104448
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0, size 572416
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f7, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f6, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f5, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f4, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290, size 605184
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f6, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f5, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f4, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032, size 222208
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x00090675, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f2, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f5, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430, size 220160
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x40, 2023-05-05, rev 0x0005, size 117760
     sig 0x000a0671, pf_mask 0x02, 2023-09-03, rev 0x005d, size 104448
     sig 0x000b0671, pf_mask 0x32, 2023-08-29, rev 0x011d, size 210944
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c, size 216064
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06a3, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06e0, pf_mask 0x11, 2023-06-26, rev 0x0012, size 136192
   * Updated 2023-08-08 changelog entry:
     Mitigations for "retvar" on a few processors, refer to the 2023-11-14
     entry for details.  This information was disclosed in 2023-11-14.
   * source: update symlinks to reflect id of the latest release, 20231114
Checksums-Sha1:
 82b978af04183c222efa74bab9946c840c775d7a 1798 intel-microcode_3.20231114.1.dsc
 862daad8a318f6768e6e4594cc1f9955a08540a1 6791752 
intel-microcode_3.20231114.1.tar.xz
 ec9592558dee550a0048217733820310545a4d9e 6599 
intel-microcode_3.20231114.1_amd64.buildinfo
Checksums-Sha256:
 dde2028b29b2257723e79f5b06012c10bff61b9531b1d381c837493810b3af67 1798 
intel-microcode_3.20231114.1.dsc
 637ac30d3fc36eb51d3ed71909f09f7408797f4527c20e58d3b0ad4eafc20869 6791752 
intel-microcode_3.20231114.1.tar.xz
 97ecd0e2adb703853c2c5dd876f835f00cb1636d0c85b2eaa6a98406174b953b 6599 
intel-microcode_3.20231114.1_amd64.buildinfo
Files:
 9306dad8772234814fe7b0e53904bf7c 1798 non-free-firmware/admin standard 
intel-microcode_3.20231114.1.dsc
 ce7da8152b3c28be02ed60a8345b9fa0 6791752 non-free-firmware/admin standard 
intel-microcode_3.20231114.1.tar.xz
 bbd9a2169fe3718a926f285fe0e3e68b 6599 non-free-firmware/admin standard 
intel-microcode_3.20231114.1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=8vQo
-----END PGP SIGNATURE-----

--- End Message ---