Bug#1095805: intel-microcode: CVE-2023-34440 CVE-2023-43758 CVE-2024-24582 CVE-2024-28047 CVE-2024-28127 CVE-2024-29214 CVE-2024-31068 CVE-2024-31157 CVE-2024-36293 CVE-2024-37020 CVE-2024-39279 CVE-2024-39355

Salvatore Bonaccorso Wed, 12 Feb 2025 01:21:33 -0800

Source: intel-microcode
Version: 3.20241112.1
Severity: important
Tags: security upstream
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>


Hi Henrique,

The following vulnerabilities were published for intel-microcode.

I think it is best if you could double-check this, but then first go
via unstable and likely for the next point release for bookworm?

* CVE-2023-34440[0]

* CVE-2023-43758[1]

* CVE-2024-24582[2]

* CVE-2024-28047[3]

* CVE-2024-28127[4]

* CVE-2024-29214[5]

* CVE-2024-31068[6]

* CVE-2024-31157[7]

* CVE-2024-36293[8]

* CVE-2024-37020[9]

* CVE-2024-39279[10]

* CVE-2024-39355[11]

If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2023-34440
    https://www.cve.org/CVERecord?id=CVE-2023-34440
[1] https://security-tracker.debian.org/tracker/CVE-2023-43758
    https://www.cve.org/CVERecord?id=CVE-2023-43758
[2] https://security-tracker.debian.org/tracker/CVE-2024-24582
    https://www.cve.org/CVERecord?id=CVE-2024-24582
[3] https://security-tracker.debian.org/tracker/CVE-2024-28047
    https://www.cve.org/CVERecord?id=CVE-2024-28047
[4] https://security-tracker.debian.org/tracker/CVE-2024-28127
    https://www.cve.org/CVERecord?id=CVE-2024-28127
[5] https://security-tracker.debian.org/tracker/CVE-2024-29214
    https://www.cve.org/CVERecord?id=CVE-2024-29214
[6] https://security-tracker.debian.org/tracker/CVE-2024-31068
    https://www.cve.org/CVERecord?id=CVE-2024-31068
[7] https://security-tracker.debian.org/tracker/CVE-2024-31157
    https://www.cve.org/CVERecord?id=CVE-2024-31157
[8] https://security-tracker.debian.org/tracker/CVE-2024-36293
    https://www.cve.org/CVERecord?id=CVE-2024-36293
[9] https://security-tracker.debian.org/tracker/CVE-2024-37020
    https://www.cve.org/CVERecord?id=CVE-2024-37020
[10] https://security-tracker.debian.org/tracker/CVE-2024-39279
    https://www.cve.org/CVERecord?id=CVE-2024-39279
[11] https://security-tracker.debian.org/tracker/CVE-2024-39355
    https://www.cve.org/CVERecord?id=CVE-2024-39355

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#1095805: intel-microcode: CVE-2023-34440 CVE-2023-43758 CVE-2024-24582 CVE-2024-28047 CVE-2024-28127 CVE-2024-29214 CVE-2024-31068 CVE-2024-31157 CVE-2024-36293 CVE-2024-37020 CVE-2024-39279 CVE-2024-39355

Reply via email to