{"id":"MGASA-2025-0068","summary":"Updated microcode packages fix security vulnerabilities","details":"Improper Finite State Machines (FSMs) in Hardware Logic for some Intel®\nProcessors may allow privileged user to potentially enable denial of\nservice via local access. (CVE-2024-31068)\nImproper access control in the EDECCSSA user leaf function for some\nIntel® Processors with Intel® SGX may allow an authenticated user to\npotentially enable denial of service via local access. (CVE-2024-36293)\nImproper input validation in UEFI firmware for some Intel® processors\nmay allow a privileged user to potentially enable escalation of\nprivilege via local access. (CVE-2023-43758)\nImproper handling of physical or environmental conditions in some Intel®\nProcessors may allow an authenticated user to enable denial of service\nvia local access. (CVE-2024-39355)\nSequence of processor instructions leads to unexpected behavior in the\nIntel® DSA V1.0 for some Intel® Xeon® Processors may allow an\nauthenticated user to potentially enable denial of service via local\naccess. (CVE-2024-37020)\n","modified":"2026-04-16T04:43:32.632112186Z","published":"2025-02-17T18:37:36Z","upstream":["CVE-2023-43758","CVE-2024-31068","CVE-2024-36293","CVE-2024-37020","CVE-2024-39355"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0068.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=34020"},{"type":"WEB","url":"https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20250211"}],"affected":[{"package":{"name":"microcode","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/microcode?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.20250211-1.mga9.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0068.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}