RHSA-2021:3029: Red Hat Security Advisory: microcode_ctl security, bug fix and enhancement update

An update for microcode_ctl is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.The microcode_ctl packages provide microcode updates for Intel. Security Fix(es):

• hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543)
• hw: Vector Register Data Sampling (CVE-2020-0548)
• hw: L1D Cache Eviction Sampling (CVE-2020-0549)
• hw: vt-d related privilege escalation (CVE-2020-24489)
• hw: improper isolation of shared resources in some Intel Processors (CVE-2020-24511)
• hw: observable timing discrepancy in some Intel Processors (CVE-2020-24512)
• hw: Information disclosure issue in Intel SGX via RAPL interface (CVE-2020-8695)
• hw: Vector Register Leakage-Active (CVE-2020-8696)
• hw: Fast forward store predictor (CVE-2020-8698) Related CVEs:
• CVE-2020-0543: hw: Special Register Buffer Data Sampling (SRBDS)
• CVE-2020-0548: hw: Vector Register Data Sampling
• CVE-2020-0549: hw: L1D Cache Eviction Sampling
• CVE-2020-8695: hw: Information disclosure issue in Intel SGX via RAPL interface
• CVE-2020-8696: hw: Vector Register Leakage-Active
• CVE-2020-8698: hw: Fast forward store predictor
• CVE-2020-24489: hw: vt-d related privilege escalation
• CVE-2020-24511: hw: improper isolation of shared resources in some Intel Processors
• CVE-2020-24512: hw: observable timing discrepancy in some Intel Processors