Security update for spectre-meltdown-checker SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:2862-1 Final 1 1 2021-08-27T12:41:34Z current 2021-08-27T12:41:34Z 2021-08-27T12:41:34Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for spectre-meltdown-checker This update for spectre-meltdown-checker fixes the following issues: spectre-meltdown-checker was updated to version 0.44 (bsc#1189477) - feat: add support for SRBDS related vulnerabilities - feat: add zstd kernel decompression (#370) - enh: arm: add experimental support for binary arm images - enh: rsb filling: no longer need the 'strings' tool to check for kernel support in live mode - fix: fwdb: remove Intel extract tempdir on exit - fix: has_vmm: ignore kernel threads when looking for a hypervisor (fixes #278) - fix: fwdb: use the commit date as the intel fwdb version - fix: fwdb: update Intel's repository URL - fix: arm64: CVE-2017-5753: kernels 4.19+ use a different nospec macro - fix: on CPU parse info under FreeBSD - chore: github: add check run on pull requests - chore: fwdb: update to v165.20201021+i20200616 The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2021-2862,SUSE-SLE-SERVER-12-SP5-2021-2862 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20212862-1/ Link for SUSE-SU-2021:2862-1 https://lists.suse.com/pipermail/sle-security-updates/2021-August/009367.html E-Mail link for SUSE-SU-2021:2862-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1189477 SUSE Bug 1189477 https://www.suse.com/security/cve/CVE-2017-5753/ SUSE CVE CVE-2017-5753 page SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 spectre-meltdown-checker-0.44-3.6.1 spectre-meltdown-checker-0.44-3.6.1 as a component of SUSE Linux Enterprise Server 12 SP5 spectre-meltdown-checker-0.44-3.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. CVE-2017-5753 SUSE Linux Enterprise Server 12 SP5:spectre-meltdown-checker-0.44-3.6.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:spectre-meltdown-checker-0.44-3.6.1 important 4.9 AV:L/AC:L/Au:N/C:C/I:N/A:N 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20212862-1/ https://www.suse.com/security/cve/CVE-2017-5753.html CVE-2017-5753 https://bugzilla.suse.com/1068032 SUSE Bug 1068032 https://bugzilla.suse.com/1074562 SUSE Bug 1074562 https://bugzilla.suse.com/1074578 SUSE Bug 1074578 https://bugzilla.suse.com/1074701 SUSE Bug 1074701 https://bugzilla.suse.com/1075006 SUSE Bug 1075006 https://bugzilla.suse.com/1075419 SUSE Bug 1075419 https://bugzilla.suse.com/1075748 SUSE Bug 1075748 https://bugzilla.suse.com/1080039 SUSE Bug 1080039 https://bugzilla.suse.com/1087084 SUSE Bug 1087084 https://bugzilla.suse.com/1087939 SUSE Bug 1087939 https://bugzilla.suse.com/1089055 SUSE Bug 1089055 https://bugzilla.suse.com/1136865 SUSE Bug 1136865 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 https://bugzilla.suse.com/1209547 SUSE Bug 1209547