View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000418 | AlmaLinux-9 | microcode_ctl | public | 2023-08-10 15:25 | 2023-08-29 07:00 |
| Reporter | alukoshko | Assigned To | alukoshko | ||
| Priority | high | Severity | major | Reproducibility | always |
| Status | resolved | Resolution | fixed | ||
| Summary | 0000418: AlmaLinux 9 is affected by CVE-2022-40982 aka Downfall | ||||
| Description | Intel CPU microcode update is required in microcode_ctl package | ||||
| Additional Information | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982 | ||||
| Tags | No tags attached. | ||||
|
|
lscpu Architecture: x86_64 CPU op-mode(s): 32-bit, 64-bit Address sizes: 39 bits physical, 48 bits virtual Byte Order: Little Endian CPU(s): 2 On-line CPU(s) list: 0,1 Vendor ID: GenuineIntel Model name: 11th Gen Intel(R) Core(TM) i7-1165G7 @ 2.80GHz CPU family: 6 Model: 140 Thread(s) per core: 1 Core(s) per socket: 1 Socket(s): 2 Stepping: 1 BogoMIPS: 5606.40 Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mc a cmov pat pse36 clflush mmx fxsr sse sse2 ss syscall n x pdpe1gb rdtscp lm constant_tsc arch_perfmon rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq vmx s sse3 fma cx16 pdcm pcid sse4_1 sse4_2 x2apic movbe popc nt tsc_deadline_timer aes xsave avx f16c rdrand hypervi sor lahf_lm abm 3dnowprefetch cpuid_fault invpcid_singl e ssbd ibrs ibpb stibp ibrs_enhanced tpr_shadow vnmi fl expriority ept vpid ept_ad fsgsbase tsc_adjust bmi1 avx 2 smep bmi2 erms invpcid avx512f avx512dq rdseed adx sm ap avx512ifma clflushopt clwb avx512cd sha_ni avx512bw avx512vl xsaveopt xsavec xgetbv1 xsaves arat avx512vbmi umip pku ospke avx512_vbmi2 gfni vaes vpclmulqdq avx51 2_vnni avx512_bitalg avx512_vpopcntdq rdpid movdiri mov dir64b fsrm avx512_vp2intersect md_clear arch_capabilit ies Virtualization features: Virtualization: VT-x Hypervisor vendor: KVM Virtualization type: full Caches (sum of all): L1d: 64 KiB (2 instances) L1i: 64 KiB (2 instances) L2: 8 MiB (2 instances) L3: 32 MiB (2 instances) NUMA: NUMA node(s): 1 NUMA node0 CPU(s): 0,1 Vulnerabilities: Itlb multihit: Not affected L1tf: Not affected Mds: Not affected Meltdown: Not affected Mmio stale data: Not affected Retbleed: Not affected Spec store bypass: Mitigation; Speculative Store Bypass disabled via prctl Spectre v1: Mitigation; usercopy/swapgs barriers and __user pointer sanitization Spectre v2: Mitigation; Enhanced IBRS, IBPB conditional, RSB fillin g, PBRSB-eIBRS SW sequence Srbds: Not affected Tsx async abort: Not affected --------------------------------------------------------------------------------------------------- journalctl -k --grep=microcode -- No entries -- |
|
|
lscpu Architecture: x86_64 CPU op-mode(s): 32-bit, 64-bit Address sizes: 39 bits physical, 48 bits virtual Byte Order: Little Endian CPU(s): 8 On-line CPU(s) list: 0-7 Vendor ID: GenuineIntel Model name: Intel(R) Core(TM) i7-9700 CPU @ 3.00GHz CPU family: 6 Model: 158 Thread(s) per core: 1 Core(s) per socket: 8 Socket(s): 1 Stepping: 13 CPU max MHz: 4700.0000 CPU min MHz: 800.0000 BogoMIPS: 6000.00 Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mc a cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx pdpe1gb rdtscp lm constant_tsc art arch_perfmon pebs bts rep_good nopl xtopology nonstop_ tsc cpuid aperfmperf pni pclmulqdq dtes64 monitor ds_cp l vmx smx est tm2 ssse3 sdbg fma cx16 xtpr pdcm pcid ss e4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand lahf_lm abm 3dnowprefetch cpuid_f ault epb invpcid_single ssbd ibrs ibpb stibp ibrs_enhan ced tpr_shadow vnmi flexpriority ept vpid ept_ad fsgsba se tsc_adjust bmi1 avx2 smep bmi2 erms invpcid mpx rdse ed adx smap clflushopt intel_pt xsaveopt xsavec xgetbv1 xsaves dtherm ida arat pln pts hwp hwp_notify hwp_act_ window hwp_epp md_clear flush_l1d arch_capabilities Virtualization features: Virtualization: VT-x Caches (sum of all): L1d: 256 KiB (8 instances) L1i: 256 KiB (8 instances) L2: 2 MiB (8 instances) L3: 12 MiB (1 instance) NUMA: NUMA node(s): 1 NUMA node0 CPU(s): 0-7 Vulnerabilities: Itlb multihit: KVM: Mitigation: VMX disabled L1tf: Not affected Mds: Not affected Meltdown: Not affected Mmio stale data: Mitigation; Clear CPU buffers; SMT disabled Retbleed: Mitigation; Enhanced IBRS Spec store bypass: Mitigation; Speculative Store Bypass disabled via prctl Spectre v1: Mitigation; usercopy/swapgs barriers and __user pointer sanitization Spectre v2: Mitigation; Enhanced IBRS, IBPB conditional, RSB fillin g, PBRSB-eIBRS SW sequence Srbds: Mitigation; Microcode Tsx async abort: Mitigation; TSX disabled journalctl -k --grep=microcode Aug 14 14:42:34 localhost kernel: microcode: microcode updated early to revisio> Aug 14 14:42:34 localhost kernel: SRBDS: Mitigation: Microcode Aug 14 14:42:34 localhost kernel: microcode: sig=0x906ed, pf=0x2, revision=0xfa Aug 14 14:42:34 localhost kernel: microcode: Microcode Update Driver: v2.2. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2023-08-10 15:25 | alukoshko | New Issue | |
| 2023-08-10 15:25 | alukoshko | Status | new => assigned |
| 2023-08-10 15:25 | alukoshko | Assigned To | => alukoshko |
| 2023-08-10 15:25 | alukoshko | Status | assigned => confirmed |
| 2023-08-10 15:32 | alukoshko | Description Updated | |
| 2023-08-14 19:26 | 4sokol | Note Added: 0000955 | |
| 2023-08-14 20:33 | kclem | Note Added: 0000957 | |
| 2023-08-29 07:00 | alukoshko | Status | confirmed => resolved |
| 2023-08-29 07:00 | alukoshko | Resolution | open => fixed |
