vulnerability

Ubuntu: USN-3531-2: Intel Microcode regression

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:N/A:N)	Jan 22, 2018	Jan 24, 2018	Feb 19, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

Jan 22, 2018

Added

Jan 24, 2018

Modified

Feb 19, 2025

Description

USN-3531-1 updated Intel microcode to the 20180108 release. Regressions were discovered in the microcode updates which could cause system instability on certain hardware platforms. At the request of Intel, we have reverted to the previous packaged microcode version, the 20170707 release.

Original advisory details:

It was discovered that microprocessors utilizing speculative execution and branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Spectre. A local attacker could use this to expose sensitive information, including kernel memory. (CVE-2017-5715) This update provides the microcode updates required for the corresponding Linux kernel updates.

Solution

ubuntu-upgrade-intel-microcode

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today