RHEA-2019:3846 - Product Enhancement Advisory

Topic

An update for microcode_ctl is now available for Red Hat Enterprise Linux 7.

Description

The microcode_ctl packages provide microcode updates for Intel x86 processors.

This update adds the following enhancement:

• Update Intel microcode version to microcode-20191112 (BZ#1769889)

Users of microcode_ctl are advised to upgrade to these updated packages, which
add this enhancement.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Note: a system reboot is necessary for this update to take effect.

Affected Products

• Red Hat Enterprise Linux Server 7 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7 x86_64
• Red Hat Enterprise Linux Server - AUS 7.7 x86_64
• Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
• Red Hat Enterprise Linux Workstation 7 x86_64
• Red Hat Enterprise Linux Desktop 7 x86_64
• Red Hat Enterprise Linux for Scientific Computing 7 x86_64
• Red Hat Enterprise Linux Server - TUS 7.7 x86_64
• Red Hat Enterprise Linux EUS Compute Node 7.7 x86_64
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.7 x86_64

Fixes

• BZ - 1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA)
• BZ - 1753064 - hw: Target Array Sharing side channel attack
• BZ - 1753065 - hw: VERW information leak - incomplete fix of buffer clearing for previous MDS fixes
• BZ - 1753066 - hw: SHUF instruction implementation flaw
• BZ - 1753068 - hw: Fully integrated voltage regulation error condition handling (FIVR)
• BZ - 1753113 - hw: Conditional Jump Macro-fusion (JCC)
• BZ - 1758414 - CVE-2019-0117 hw: Intel SGX information leak
• BZ - 1760200 - hw: EGETKEY erratum
• BZ - 1765481 - CVE-2019-11139 hw: voltage modulation technical advisory

CVEs

• CVE-2019-0117

References

• https://access.redhat.com/solutions/2019-microcode-nov