Details of VAR-202106-0344

ID

VAR-202106-0344

CVE

CVE-2020-24512

TITLE

Intel Processors Information disclosure vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-202106-633

DESCRIPTION

Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: microcode_ctl security, bug fix and enhancement update Advisory ID: RHSA-2021:3028-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3028 Issue date: 2021-08-09 CVE Names: CVE-2020-0543 CVE-2020-0548 CVE-2020-0549 CVE-2020-8695 CVE-2020-8696 CVE-2020-8698 CVE-2020-24489 CVE-2020-24511 CVE-2020-24512 ==================================================================== 1. Summary: An update for microcode_ctl is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 3. Description: The microcode_ctl packages provide microcode updates for Intel. Security Fix(es): * hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543) * hw: Vector Register Data Sampling (CVE-2020-0548) * hw: L1D Cache Eviction Sampling (CVE-2020-0549) * hw: vt-d related privilege escalation (CVE-2020-24489) * hw: improper isolation of shared resources in some Intel Processors (CVE-2020-24511) * hw: observable timing discrepancy in some Intel Processors (CVE-2020-24512) * hw: Information disclosure issue in Intel SGX via RAPL interface (CVE-2020-8695) * hw: Vector Register Leakage-Active (CVE-2020-8696) * hw: Fast forward store predictor (CVE-2020-8698) 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1788786 - CVE-2020-0548 hw: Vector Register Data Sampling 1788788 - CVE-2020-0549 hw: L1D Cache Eviction Sampling 1827165 - CVE-2020-0543 hw: Special Register Buffer Data Sampling (SRBDS) 1828583 - CVE-2020-8695 hw: Information disclosure issue in Intel SGX via RAPL interface 1890355 - CVE-2020-8696 hw: Vector Register Leakage-Active 1890356 - CVE-2020-8698 hw: Fast forward store predictor 1897684 - [rhel-7.9.z] Re-enable 06-5e-03 (SKL-H/S, CPUID 0x506e3) latest microcode updates 1962650 - CVE-2020-24489 hw: vt-d related privilege escalation 1962702 - CVE-2020-24511 hw: improper isolation of shared resources in some Intel Processors 1962722 - CVE-2020-24512 hw: observable timing discrepancy in some Intel Processors 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: microcode_ctl-2.1-73.11.el7_9.src.rpm x86_64: microcode_ctl-2.1-73.11.el7_9.x86_64.rpm microcode_ctl-debuginfo-2.1-73.11.el7_9.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: microcode_ctl-2.1-73.11.el7_9.src.rpm x86_64: microcode_ctl-2.1-73.11.el7_9.x86_64.rpm microcode_ctl-debuginfo-2.1-73.11.el7_9.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: microcode_ctl-2.1-73.11.el7_9.src.rpm x86_64: microcode_ctl-2.1-73.11.el7_9.x86_64.rpm microcode_ctl-debuginfo-2.1-73.11.el7_9.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: microcode_ctl-2.1-73.11.el7_9.src.rpm x86_64: microcode_ctl-2.1-73.11.el7_9.x86_64.rpm microcode_ctl-debuginfo-2.1-73.11.el7_9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-0543 https://access.redhat.com/security/cve/CVE-2020-0548 https://access.redhat.com/security/cve/CVE-2020-0549 https://access.redhat.com/security/cve/CVE-2020-8695 https://access.redhat.com/security/cve/CVE-2020-8696 https://access.redhat.com/security/cve/CVE-2020-8698 https://access.redhat.com/security/cve/CVE-2020-24489 https://access.redhat.com/security/cve/CVE-2020-24511 https://access.redhat.com/security/cve/CVE-2020-24512 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYRD++tzjgjWX9erEAQhA1A//eeO88DFGpTcHgCHrsXimUtK3MZX0RppT 5UOWuXgmPJniMPDALpkfTNTnNGASjBB+WDclaW2d/sZf52PzYLao5wGVIYdUx3Nl l9IvbGNMm0F7eI7aHdT2QnUhQQl1IpJrbmkhvBM2w85EmOfqlq+CpXnJMRXzoRdv sFPrWAo1opDNnBV6iYAnyULHFuWwcvU28n3JU945W8p/PvqJgSze77i4dmpzYkBj ljzVrIUl2pizBmnQMj03JJ+YeB8+oKb0uD2RdqHoxkUSFGH9OW6s/qytHu/eR4uL Y7WmIfHUxGsVRcmIjo/VaAvvWs4A3hdOL3nGdRAMQOKp+VoDcX7VDNURoxK/bkcJ OepHSyfWPCVXvOmU5l2ov1uzVQ/F+ajeevMehuzwQlTAIur5qE2eQ2Mwitfh/7WZ W3x67peCz51zVPtb7rkQfpzQzZKkjSAAclOYMzltv2PA5vSXZy8+hEqWZwqtesQn ltz36bjQMvRRhr1yGDbaFI5dcTB8T/eIkzmD6wPfbd7r7SEuE0GUd8Yf69VghGL2 f+mvR8oWb2x3RHXbpFm4aIt5mJHqIgfXDAohz7lXgLyJwQefyeJ5w+W8nOe+ZSK/ yvfiVQZz9tvPq8yqC87YWTA7zcnhoSmPvXRicJakpfJL/oz043Tc17jqxIra36sA UjXnNBNse8A=LIYI -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . 6 ELS) - i386, x86_64 3

Trust: 1.62

sources: NVD: CVE-2020-24512 // VULHUB: VHN-178398 // PACKETSTORM: 163956 // PACKETSTORM: 163758 // PACKETSTORM: 163772 // PACKETSTORM: 163031 // PACKETSTORM: 163036 // PACKETSTORM: 163043 // PACKETSTORM: 163044

AFFECTED PRODUCTS

vendor:	debian	model:	linux	scope:	eq	version:	10.0	Trust: 1.0
vendor:	netapp	model:	solidfire bios	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	hci compute node bios	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	microcode	scope:	lt	version:	20210608	Trust: 1.0
vendor:	netapp	model:	fas\/aff bios	scope:	eq	version:	-	Trust: 1.0

sources: NVD: CVE-2020-24512

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2020-24512
value:	LOW
Trust: 1.0
CNNVD:	CNNVD-202106-633
value:	LOW
Trust: 0.6
VULHUB:	VHN-178398
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2020-24512
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-178398
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2020-24512
baseSeverity:	LOW
baseScore:	3.3
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	1.4
version:	3.1
Trust: 1.0

sources: VULHUB: VHN-178398 // CNNVD: CNNVD-202106-633 // NVD: CVE-2020-24512

PROBLEMTYPE DATA

problemtype:

CWE-203

Trust: 1.1

sources: VULHUB: VHN-178398 // NVD: CVE-2020-24512

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202106-633

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-202106-633

PATCH

title:

Intel Processors Repair measures for information disclosure vulnerabilities

url:

http://123.124.177.30/web/xxk/bdxqById.tag?id=153291

Trust: 0.6

sources: CNNVD: CNNVD-202106-633

EXTERNAL IDS

db:	NVD	id:	CVE-2020-24512	Trust: 2.4
db:	SIEMENS	id:	SSA-309571	Trust: 1.7
db:	PACKETSTORM	id:	163031	Trust: 0.8
db:	PACKETSTORM	id:	163772	Trust: 0.7
db:	AUSCERT	id:	ESB-2021.2243	Trust: 0.6
db:	AUSCERT	id:	ESB-2023.2479	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.4047	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2088	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2721	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2797	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.3443	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2258	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2537	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2905	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2945	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2010	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2672	Trust: 0.6
db:	CS-HELP	id:	SB2021081834	Trust: 0.6
db:	CS-HELP	id:	SB2021080917	Trust: 0.6
db:	CS-HELP	id:	SB2021083127	Trust: 0.6
db:	CS-HELP	id:	SB2021081125	Trust: 0.6
db:	CS-HELP	id:	SB2021062128	Trust: 0.6
db:	CS-HELP	id:	SB2021062701	Trust: 0.6
db:	PACKETSTORM	id:	163863	Trust: 0.6
db:	PACKETSTORM	id:	163993	Trust: 0.6
db:	PACKETSTORM	id:	163757	Trust: 0.6
db:	ICS CERT	id:	ICSA-21-222-05	Trust: 0.6
db:	LENOVO	id:	LEN-62742	Trust: 0.6
db:	CNNVD	id:	CNNVD-202106-633	Trust: 0.6
db:	PACKETSTORM	id:	163044	Trust: 0.2
db:	PACKETSTORM	id:	163043	Trust: 0.2
db:	PACKETSTORM	id:	163036	Trust: 0.2
db:	PACKETSTORM	id:	163037	Trust: 0.1
db:	PACKETSTORM	id:	163047	Trust: 0.1
db:	PACKETSTORM	id:	163040	Trust: 0.1
db:	PACKETSTORM	id:	163042	Trust: 0.1
db:	PACKETSTORM	id:	163048	Trust: 0.1
db:	PACKETSTORM	id:	163032	Trust: 0.1
db:	PACKETSTORM	id:	163046	Trust: 0.1
db:	VULHUB	id:	VHN-178398	Trust: 0.1
db:	PACKETSTORM	id:	163956	Trust: 0.1
db:	PACKETSTORM	id:	163758	Trust: 0.1

sources: VULHUB: VHN-178398 // PACKETSTORM: 163956 // PACKETSTORM: 163758 // PACKETSTORM: 163772 // PACKETSTORM: 163031 // PACKETSTORM: 163036 // PACKETSTORM: 163043 // PACKETSTORM: 163044 // CNNVD: CNNVD-202106-633 // NVD: CVE-2020-24512

REFERENCES

url:	https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf	Trust: 1.7
url:	https://security.netapp.com/advisory/ntap-20210611-0005/	Trust: 1.7
url:	https://www.debian.org/security/2021/dsa-4934	Trust: 1.7
url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html	Trust: 1.7
url:	https://lists.debian.org/debian-lts-announce/2021/07/msg00022.html	Trust: 1.7
url:	https://access.redhat.com/security/cve/cve-2020-24512	Trust: 1.3
url:	https://access.redhat.com/security/cve/cve-2020-24511	Trust: 0.7
url:	https://nvd.nist.gov/vuln/detail/cve-2020-24512	Trust: 0.7
url:	https://access.redhat.com/articles/11258	Trust: 0.7
url:	https://nvd.nist.gov/vuln/detail/cve-2020-24489	Trust: 0.7
url:	https://access.redhat.com/security/cve/cve-2020-24489	Trust: 0.7
url:	https://listman.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.7
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.7
url:	https://access.redhat.com/security/team/key/	Trust: 0.7
url:	https://access.redhat.com/security/team/contact/	Trust: 0.7
url:	https://nvd.nist.gov/vuln/detail/cve-2020-24511	Trust: 0.7
url:	https://bugzilla.redhat.com/):	Trust: 0.7
url:	https://packetstormsecurity.com/files/163863/red-hat-security-advisory-2021-3176-01.html	Trust: 0.6
url:	https://support.lenovo.com/us/en/product_security/len-62742	Trust: 0.6
url:	https://packetstormsecurity.com/files/163757/red-hat-security-advisory-2021-3027-01.html	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021081834	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2537	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2023.2479	Trust: 0.6
url:	https://www.ibm.com/support/pages/node/6520482	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2243	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2088	Trust: 0.6
url:	https://packetstormsecurity.com/files/163772/red-hat-security-advisory-2021-3029-01.html	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021062128	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021062701	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.4047	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021081125	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021083127	Trust: 0.6
url:	https://us-cert.cisa.gov/ics/advisories/icsa-21-222-05	Trust: 0.6
url:	https://packetstormsecurity.com/files/163993/red-hat-security-advisory-2021-3364-01.html	Trust: 0.6
url:	https://packetstormsecurity.com/files/163031/red-hat-security-advisory-2021-2299-01.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2905	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2721	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021080917	Trust: 0.6
url:	https://vigilance.fr/vulnerability/intel-processor-information-disclosure-via-shared-resources-35664	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2945	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2672	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2010	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2258	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2797	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.3443	Trust: 0.6
url:	https://access.redhat.com/security/cve/cve-2020-24513	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2020-24513	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2020-8696	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2020-8698	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-8698	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-0549	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2020-0543	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2020-8695	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-8695	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2020-0549	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-0543	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2020-8696	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-0548	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2020-0548	Trust: 0.3
url:	https://access.redhat.com/errata/rhsa-2021:3322	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:3028	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:3029	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2299	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2300	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2301	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:2304	Trust: 0.1

CREDITS

Red Hat

Trust: 0.7

sources: PACKETSTORM: 163956 // PACKETSTORM: 163758 // PACKETSTORM: 163772 // PACKETSTORM: 163031 // PACKETSTORM: 163036 // PACKETSTORM: 163043 // PACKETSTORM: 163044

SOURCES

db:	VULHUB	id:	VHN-178398
db:	PACKETSTORM	id:	163956
db:	PACKETSTORM	id:	163758
db:	PACKETSTORM	id:	163772
db:	PACKETSTORM	id:	163031
db:	PACKETSTORM	id:	163036
db:	PACKETSTORM	id:	163043
db:	PACKETSTORM	id:	163044
db:	CNNVD	id:	CNNVD-202106-633
db:	NVD	id:	CVE-2020-24512

LAST UPDATE DATE

2025-04-24T23:10:30.192000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-178398	date:	2021-09-09T00:00:00
db:	CNNVD	id:	CNNVD-202106-633	date:	2023-05-04T00:00:00
db:	NVD	id:	CVE-2020-24512	date:	2021-09-09T12:56:22.933

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-178398	date:	2021-06-09T00:00:00
db:	PACKETSTORM	id:	163956	date:	2021-08-31T15:44:21
db:	PACKETSTORM	id:	163758	date:	2021-08-09T14:15:45
db:	PACKETSTORM	id:	163772	date:	2021-08-10T14:49:53
db:	PACKETSTORM	id:	163031	date:	2021-06-09T13:26:32
db:	PACKETSTORM	id:	163036	date:	2021-06-09T13:28:02
db:	PACKETSTORM	id:	163043	date:	2021-06-09T13:40:40
db:	PACKETSTORM	id:	163044	date:	2021-06-09T13:40:48
db:	CNNVD	id:	CNNVD-202106-633	date:	2021-06-08T00:00:00
db:	NVD	id:	CVE-2020-24512	date:	2021-06-09T19:15:08.930