{"id":"MGASA-2021-0256","summary":"Updated microcode packages fix security vulnerabilities","details":"Updated microcodes for Intel processors, fixing various functional\nissues, and at least the following security issues:\n\nIncomplete cleanup in some Intel(R) VT-d products may allow an\nauthenticated user to potentially enable escalation of privilege\nvia local access (CVE-2020-24489).\n\nImproper isolation of shared resources in some Intel(R) Processors may\nallow an authenticated user to potentially enable information disclosure\nvia local access (CVE-2020-24511).\n\nDomain-bypass transient execution vulnerability in some Intel Atom(R)\nProcessors may allow an authenticated user to potentially enable information\ndisclosure via local access (CVE-2020-24513).\n\nFor more info about this update, see the refenced links.\n","modified":"2026-04-16T04:42:41.335686616Z","published":"2021-06-13T21:32:39Z","upstream":["CVE-2020-24489","CVE-2020-24511","CVE-2020-24513"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2021-0256.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=29095"},{"type":"WEB","url":"https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20210608"},{"type":"ADVISORY","url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00442.html"},{"type":"ADVISORY","url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html"},{"type":"ADVISORY","url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00465.html"}],"affected":[{"package":{"name":"microcode","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/microcode?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.20210608-1.mga7.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0256.json"}},{"package":{"name":"microcode","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/microcode?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.20210608-1.mga8.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0256.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}