The latest updates protect against hidden threats in processors.
updated processor microcode to address five security vulnerabilities, and added new code to the Linux kernel to mitigate a new Register File Data Sampling (RFDS) vulnerability affecting Atom and E processors.
The company has released microcode updates for processors aimed at addressing vulnerabilities SA-00972, SA-00982, SA-00898, SA-00960 and SA-01045. These updates provide protection against a variety of issues, including potential denial-of-service attacks due to processor bus locks, information leakage through processor return predictions, a mid-level RFDS vulnerability, and a privilege escalation vulnerability in 3rd-and 4th-generation Xeon processors with SGX and TDX technologies.
In addition, the new processor microcode includes updates to address unspecified functional issues affecting processors from Core Ultra "Meteor Lake" to 7th-generation Core processors, as well as 4th-and 2nd-generation Xeon Scalable processors. This is the first time that Intel has published new CPU microcode files for Meteor Lake and Emerald Rapids processors.
New Intel processor microcode files are available for download from GitHub .
Also, the Linux kernel has added protection against the RFDS vulnerability associated with the selection of register file data. This vulnerability allows an attacker to get outdated register values from the kernel space. Given the possibility that the kernel registers may contain sensitive data, a security measure is to clear the values in the registers before returning them to user space.
The register file data sampling vulnerability affects the Intel Atom and E cores, starting with Goldmont, Tremont, Alder Lake, Raptor Lake, and Gracemont.
updated processor microcode to address five security vulnerabilities, and added new code to the Linux kernel to mitigate a new Register File Data Sampling (RFDS) vulnerability affecting Atom and E processors.
The company has released microcode updates for processors aimed at addressing vulnerabilities SA-00972, SA-00982, SA-00898, SA-00960 and SA-01045. These updates provide protection against a variety of issues, including potential denial-of-service attacks due to processor bus locks, information leakage through processor return predictions, a mid-level RFDS vulnerability, and a privilege escalation vulnerability in 3rd-and 4th-generation Xeon processors with SGX and TDX technologies.
In addition, the new processor microcode includes updates to address unspecified functional issues affecting processors from Core Ultra "Meteor Lake" to 7th-generation Core processors, as well as 4th-and 2nd-generation Xeon Scalable processors. This is the first time that Intel has published new CPU microcode files for Meteor Lake and Emerald Rapids processors.
New Intel processor microcode files are available for download from GitHub .
Also, the Linux kernel has added protection against the RFDS vulnerability associated with the selection of register file data. This vulnerability allows an attacker to get outdated register values from the kernel space. Given the possibility that the kernel registers may contain sensitive data, a security measure is to clear the values in the registers before returning them to user space.
The register file data sampling vulnerability affects the Intel Atom and E cores, starting with Goldmont, Tremont, Alder Lake, Raptor Lake, and Gracemont.
