USN-7269-2: Intel Microcode vulnerabilities

USN-7269-2: Intel Microcode vulnerabilities
24 February 2025

Several security issues were fixed in Intel Microcode.

Releases
Ubuntu 24.04 LTS

Packages
intel-microcode - Processor microcode for Intel CPUs

Details
USN-7269-1 fixed vulnerabilities in Intel Microcode. This update provides
the corresponding updates for Ubuntu 24.04 LTS.

Original advisory details:

Ke Sun, Paul Grosen and Alyssa Milburn discovered that some Intel®
Processors did not properly implement Finite State Machines (FSMs) in
Hardware Logic. A local privileged attacker could use this issue to cause
a denial of service. (CVE-2024-31068)

It was discovered that some Intel® Processors with Intel® SGX did not
properly restrict access to the EDECCSSA user leaf function. A local
authenticated attacker could use this issue to cause a denial of
service. (CVE-2024-36293)

Ke Sun, Alyssa Milburn, Benoit Morgan, and Erik Bjorge discovered that the
UEFI firmware for some Intel® processors did not properly restrict
access. An authenticated local attacker could use this issue to cause a
denial of service. (CVE-2024-39279)

Update instructions
The problem can be corrected by updating your system to the following package versions:

Ubuntu 24.04
intel-microcode - 3.20250211.0ubuntu0.24.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.

References

• CVE-2024-39279
• CVE-2024-36293
• CVE-2024-31068

Related notices

• USN-7269-1