{"id":"MGASA-2024-0302","summary":"Updated microcode packages fix security vulnerabilities","details":"Observable discrepancy in RAPL interface for some Intel® Processors may\nallow a privileged user to potentially enable information disclosure via\nlocal access. (CVE-2024-23984)\nImproper finite state machines (FSMs) in hardware logic in some Intel®\nProcessors may allow an privileged user to potentially enable a denial\nof service via local access. (CVE-2024-24968)\n","modified":"2026-04-16T04:43:44.154405608Z","published":"2024-09-16T17:44:44Z","upstream":["CVE-2024-23984","CVE-2024-24968"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2024-0302.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=33560"},{"type":"WEB","url":"https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20240910"}],"affected":[{"package":{"name":"microcode","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/microcode?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.20240910-1.mga9.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2024-0302.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}