SB2019111425 - Denial of service in Intel Xeon Scalable Processors
Published: November 14, 2019
Security Bulletin ID
SB2019111425
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Resource management error (CVE-ID: CVE-2019-11139)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper conditions check in the voltage modulation interface for some Intel(R) Xeon(R) Scalable Processors. A local user can perform a denial of service attack.
The following Intel Xeon Scalable Processors are affected:
- Intel Xeon Platinum Processors: 8153, 8156, 8158, 8160, 8160F, 8160M, 8160T, 8164, 8168, 8170, 8170M, 8176, 8176F, 8176M, 8180, 8180M
- Intel
Xeon Gold Processors: 5115, 5118, 5119T, 5120, 5120T, 5122, 6126,
6126F, 6126T, 6128, 6130, 6130F, 6130T, 6132, 6134, 6134M, 6136, 6138,
6138F, 6138T, 6140, 6140M, 6142, 6142F, 6142M, 6144, 6146, 6148, 6148F,
6150, 6152, 6154
- Intel Xeon Silver Processors: 4108, 4109T, 4110, 4112, 4114, 4114T, 4116, 4116T
- Intel Xeon Bronze Processors: 3104, 3106
Remediation
Install update from vendor's website.