{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_security_advisory","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"Security update for ucode-intel","title":"Title of the patch"},{"category":"description","text":"This update for ucode-intel fixes the following issues:\n\nUpdated to Intel CPU Microcode 20230214 release.\n \nSecurity issues fixed:\n\n- CVE-2022-38090: Security updates for [INTEL-SA-00767](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00767.html) (bsc#1208275)\n- CVE-2022-33196: Security updates for [INTEL-SA-00738](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00738.html) (bsc#1208276)\n- CVE-2022-21216: Security updates for [INTEL-SA-00700](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00700.html) (bsc#1208277)\n\n- New Platforms:\n\n  | Processor      | Stepping | F-M-S/PI    | Old Ver  | New Ver  | Products\n  |:---------------|:---------|:------------|:---------|:---------|:---------\n  | SPR-SP         | E2       | 06-8f-05/87 |          | 2b000181 | Xeon Scalable Gen4\n  | SPR-SP         | E3       | 06-8f-06/87 |          | 2b000181 | Xeon Scalable Gen4\n  | SPR-SP         | E4       | 06-8f-07/87 |          | 2b000181 | Xeon Scalable Gen4\n  | SPR-SP         | E5       | 06-8f-08/87 |          | 2b000181 | Xeon Scalable Gen4\n  | SPR-HBM        | B3       | 06-8f-08/10 |          | 2c000170 | Xeon Max\n  | RPL-P 6+8      | J0       | 06-ba-02/07 |          | 0000410e | Core Gen13\n  | RPL-H 6+8      | J0       | 06-ba-02/07 |          | 0000410e | Core Gen13\n  | RPL-U 2+8      | Q0       | 06-ba-02/07 |          | 0000410e | Core Gen13\n\n- Updated Platforms:\n\n  | Processor      | Stepping | F-M-S/PI    | Old Ver  | New Ver  | Products\n  |:---------------|:---------|:------------|:---------|:---------|:---------\n  | ADL            | C0       | 06-97-02/07 | 00000026 | 0000002c | Core Gen12\n  | ADL            | C0       | 06-97-05/07 | 00000026 | 0000002c | Core Gen12\n  | ADL            | C0       | 06-bf-02/07 | 00000026 | 0000002c | Core Gen12\n  | ADL            | C0       | 06-bf-05/07 | 00000026 | 0000002c | Core Gen12\n  | ADL            | L0       | 06-9a-03/80 | 00000424 | 00000429 | Core Gen12\n  | ADL            | L0       | 06-9a-04/80 | 00000424 | 00000429 | Core Gen12\n  | CLX-SP         | B0       | 06-55-06/bf | 04003302 | 04003303 | Xeon Scalable Gen2\n  | CLX-SP         | B1       | 06-55-07/bf | 05003302 | 05003303 | Xeon Scalable Gen2\n  | CPX-SP         | A1       | 06-55-0b/bf | 07002501 | 07002503 | Xeon Scalable Gen3\n  | GLK            | B0       | 06-7a-01/01 | 0000003c | 0000003e | Pentium Silver N/J5xxx, Celeron N/J4xxx\n  | GLK-R          | R0       | 06-7a-08/01 | 00000020 | 00000022 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120\n  | ICL-D          | B0       | 06-6c-01/10 | 01000201 | 01000211 | Xeon D-17xx, D-27xx\n  | ICL-U/Y        | D1       | 06-7e-05/80 | 000000b6 | 000000b8 | Core Gen10 Mobile\n  | ICX-SP         | D0       | 06-6a-06/87 | 0d000375 | 0d000389 | Xeon Scalable Gen3\n  | JSL            | A0/A1    | 06-9c-00/01 | 24000023 | 24000024 | Pentium N6000/N6005, Celeron N4500/N4505/N5100/N5105\n  | LKF            | B2/B3    | 06-8a-01/10 | 00000031 | 00000032 | Core w/Hybrid Technology\n  | RKL-S          | B0       | 06-a7-01/02 | 00000056 | 00000057 | Core Gen11\n  | RPL-S          | S0       | 06-b7-01/32 | 0000010e | 00000112 | Core Gen13\n  | SKX-SP         | B1       | 06-55-03/97 | 0100015e | 01000161 | Xeon Scalable\n","title":"Description of the patch"},{"category":"details","text":"SUSE-2023-568,SUSE-SLE-Micro-5.3-2023-568,SUSE-SLE-Module-Basesystem-15-SP4-2023-568,SUSE-SLE-Product-HPC-15-SP2-LTSS-2023-568,SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-568,SUSE-SLE-Product-HPC-15-SP3-LTSS-2023-568,SUSE-SLE-Product-RT-15-SP3-2023-568,SUSE-SLE-Product-SLES-15-SP2-LTSS-2023-568,SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-568,SUSE-SLE-Product-SLES_SAP-15-SP2-2023-568,SUSE-SLE-Product-SLES_SAP-15-SP3-2023-568,SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2023-568,SUSE-SLE-Product-SUSE-Manager-Server-4.2-2023-568,SUSE-SUSE-MicroOS-5.1-2023-568,SUSE-SUSE-MicroOS-5.2-2023-568,SUSE-Storage-7-2023-568,SUSE-Storage-7.1-2023-568,openSUSE-Leap-Micro-5.3-2023-568,openSUSE-SLE-15.4-2023-568","title":"Patchnames"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"SUSE ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"self","summary":"URL of this CSAF notice","url":"https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_0568-1.json"},{"category":"self","summary":"URL for SUSE-SU-2023:0568-1","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20230568-1/"},{"category":"self","summary":"E-Mail link for SUSE-SU-2023:0568-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2023-February/013926.html"},{"category":"self","summary":"SUSE Bug 1208275","url":"https://bugzilla.suse.com/1208275"},{"category":"self","summary":"SUSE Bug 1208276","url":"https://bugzilla.suse.com/1208276"},{"category":"self","summary":"SUSE Bug 1208277","url":"https://bugzilla.suse.com/1208277"},{"category":"self","summary":"SUSE CVE CVE-2022-21216 page","url":"https://www.suse.com/security/cve/CVE-2022-21216/"},{"category":"self","summary":"SUSE CVE CVE-2022-33196 page","url":"https://www.suse.com/security/cve/CVE-2022-33196/"},{"category":"self","summary":"SUSE CVE CVE-2022-38090 page","url":"https://www.suse.com/security/cve/CVE-2022-38090/"}],"title":"Security update for ucode-intel","tracking":{"current_release_date":"2023-02-28T10:06:40Z","generator":{"date":"2023-02-28T10:06:40Z","engine":{"name":"cve-database.git:bin/generate-csaf.pl","version":"1"}},"id":"SUSE-SU-2023:0568-1","initial_release_date":"2023-02-28T10:06:40Z","revision_history":[{"date":"2023-02-28T10:06:40Z","number":"1","summary":"Current version"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_version","name":"ucode-intel-20230214-150200.21.1.i586","product":{"name":"ucode-intel-20230214-150200.21.1.i586","product_id":"ucode-intel-20230214-150200.21.1.i586"}}],"category":"architecture","name":"i586"},{"branches":[{"category":"product_version","name":"ucode-intel-20230214-150200.21.1.x86_64","product":{"name":"ucode-intel-20230214-150200.21.1.x86_64","product_id":"ucode-intel-20230214-150200.21.1.x86_64"}}],"category":"architecture","name":"x86_64"},{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Micro 5.3","product":{"name":"SUSE Linux Enterprise Micro 5.3","product_id":"SUSE Linux Enterprise Micro 5.3","product_identification_helper":{"cpe":"cpe:/o:suse:sle-micro:5.3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Basesystem 15 SP4","product":{"name":"SUSE Linux Enterprise Module for Basesystem 15 SP4","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP4","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-basesystem:15:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-ltss:15:sp2"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-espos:15:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-ltss:15:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Real Time 15 SP3","product":{"name":"SUSE Linux Enterprise Real Time 15 SP3","product_id":"SUSE Linux Enterprise Real Time 15 SP3","product_identification_helper":{"cpe":"cpe:/o:suse:sle_rt:15:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP2-LTSS","product":{"name":"SUSE Linux Enterprise Server 15 SP2-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP2-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:15:sp2"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP3-LTSS","product":{"name":"SUSE Linux Enterprise Server 15 SP3-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP3-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:15:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP2","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP2","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP2","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp2"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP3","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP3","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp3"}}},{"category":"product_name","name":"SUSE Manager Proxy 4.2","product":{"name":"SUSE Manager Proxy 4.2","product_id":"SUSE Manager Proxy 4.2","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-proxy:4.2"}}},{"category":"product_name","name":"SUSE Manager Server 4.2","product":{"name":"SUSE Manager Server 4.2","product_id":"SUSE Manager Server 4.2","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-server:4.2"}}},{"category":"product_name","name":"SUSE Linux Enterprise Micro 5.1","product":{"name":"SUSE Linux Enterprise Micro 5.1","product_id":"SUSE Linux Enterprise Micro 5.1","product_identification_helper":{"cpe":"cpe:/o:suse:suse-microos:5.1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Micro 5.2","product":{"name":"SUSE Linux Enterprise Micro 5.2","product_id":"SUSE Linux Enterprise Micro 5.2","product_identification_helper":{"cpe":"cpe:/o:suse:suse-microos:5.2"}}},{"category":"product_name","name":"SUSE Enterprise Storage 7","product":{"name":"SUSE Enterprise Storage 7","product_id":"SUSE Enterprise Storage 7","product_identification_helper":{"cpe":"cpe:/o:suse:ses:7"}}},{"category":"product_name","name":"SUSE Enterprise Storage 7.1","product":{"name":"SUSE Enterprise Storage 7.1","product_id":"SUSE Enterprise Storage 7.1","product_identification_helper":{"cpe":"cpe:/o:suse:ses:7.1"}}},{"category":"product_name","name":"openSUSE Leap Micro 5.3","product":{"name":"openSUSE Leap Micro 5.3","product_id":"openSUSE Leap Micro 5.3","product_identification_helper":{"cpe":"cpe:/o:opensuse:leap-micro:5.3"}}},{"category":"product_name","name":"openSUSE Leap 15.4","product":{"name":"openSUSE Leap 15.4","product_id":"openSUSE Leap 15.4","product_identification_helper":{"cpe":"cpe:/o:opensuse:leap:15.4"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3","product_id":"SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Micro 5.3"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP4"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP3","product_id":"SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Real Time 15 SP3"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP2-LTSS"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP3-LTSS"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP3"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Manager Proxy 4.2","product_id":"SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Manager Proxy 4.2"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Manager Server 4.2","product_id":"SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Manager Server 4.2"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1","product_id":"SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Micro 5.1"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2","product_id":"SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Micro 5.2"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Enterprise Storage 7","product_id":"SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Enterprise Storage 7"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of SUSE Enterprise Storage 7.1","product_id":"SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"SUSE Enterprise Storage 7.1"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of openSUSE Leap Micro 5.3","product_id":"openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"openSUSE Leap Micro 5.3"},{"category":"default_component_of","full_product_name":{"name":"ucode-intel-20230214-150200.21.1.x86_64 as component of openSUSE Leap 15.4","product_id":"openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64"},"product_reference":"ucode-intel-20230214-150200.21.1.x86_64","relates_to_product_reference":"openSUSE Leap 15.4"}]},"vulnerabilities":[{"cve":"CVE-2022-21216","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2022-21216"}],"notes":[{"category":"general","text":"Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access.","title":"CVE description"}],"product_status":{"recommended":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2022-21216","url":"https://www.suse.com/security/cve/CVE-2022-21216"},{"category":"external","summary":"SUSE Bug 1208277 for CVE-2022-21216","url":"https://bugzilla.suse.com/1208277"},{"category":"external","summary":"SUSE Bug 1209936 for CVE-2022-21216","url":"https://bugzilla.suse.com/1209936"},{"category":"external","summary":"SUSE Bug 1211490 for CVE-2022-21216","url":"https://bugzilla.suse.com/1211490"},{"category":"external","summary":"SUSE Bug 1211511 for CVE-2022-21216","url":"https://bugzilla.suse.com/1211511"},{"category":"external","summary":"SUSE Bug 1213820 for CVE-2022-21216","url":"https://bugzilla.suse.com/1213820"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":7.5,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L","version":"3.1"},"products":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]}],"threats":[{"category":"impact","date":"2023-02-28T10:06:40Z","details":"important"}],"title":"CVE-2022-21216"},{"cve":"CVE-2022-33196","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2022-33196"}],"notes":[{"category":"general","text":"Incorrect default permissions in some memory controller configurations for some Intel(R) Xeon(R) Processors when using Intel(R) Software Guard Extensions which may allow a privileged user to potentially enable escalation of privilege via local access.","title":"CVE description"}],"product_status":{"recommended":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2022-33196","url":"https://www.suse.com/security/cve/CVE-2022-33196"},{"category":"external","summary":"SUSE Bug 1208276 for CVE-2022-33196","url":"https://bugzilla.suse.com/1208276"},{"category":"external","summary":"SUSE Bug 1209936 for CVE-2022-33196","url":"https://bugzilla.suse.com/1209936"},{"category":"external","summary":"SUSE Bug 1211490 for CVE-2022-33196","url":"https://bugzilla.suse.com/1211490"},{"category":"external","summary":"SUSE Bug 1211511 for CVE-2022-33196","url":"https://bugzilla.suse.com/1211511"},{"category":"external","summary":"SUSE Bug 1213820 for CVE-2022-33196","url":"https://bugzilla.suse.com/1213820"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":7.2,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N","version":"3.1"},"products":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]}],"threats":[{"category":"impact","date":"2023-02-28T10:06:40Z","details":"important"}],"title":"CVE-2022-33196"},{"cve":"CVE-2022-38090","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2022-38090"}],"notes":[{"category":"general","text":"Improper isolation of shared resources in some Intel(R) Processors when using Intel(R) Software Guard Extensions may allow a privileged user to potentially enable information disclosure via local access.","title":"CVE description"}],"product_status":{"recommended":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2022-38090","url":"https://www.suse.com/security/cve/CVE-2022-38090"},{"category":"external","summary":"SUSE Bug 1208275 for CVE-2022-38090","url":"https://bugzilla.suse.com/1208275"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":6,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N","version":"3.1"},"products":["SUSE Enterprise Storage 7.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Enterprise Storage 7:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.1:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP4:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Real Time 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP2-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server 15 SP3-LTSS:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP3:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Proxy 4.2:ucode-intel-20230214-150200.21.1.x86_64","SUSE Manager Server 4.2:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap 15.4:ucode-intel-20230214-150200.21.1.x86_64","openSUSE Leap Micro 5.3:ucode-intel-20230214-150200.21.1.x86_64"]}],"threats":[{"category":"impact","date":"2023-02-28T10:06:40Z","details":"moderate"}],"title":"CVE-2022-38090"}]}