[Git][security-tracker-team/security-tracker][master] Add additional references for CVE-2024-56161

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bfdfc184 by Salvatore Bonaccorso at 2025-03-06T09:12:55+01:00
Add additional references for CVE-2024-56161

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11422,6 +11422,8 @@ CVE-2024-56161 (Improper signature verification in AMD CPU ROM microcode patch l
 	NOTE: https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3019.html
 	NOTE: https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w
 	NOTE: https://github.com/google/security-research/tree/master/pocs/cpus/entrysign
+	NOTE: https://github.com/google/security-research/tree/master/pocs/cpus/entrysign/zentool
+	NOTE: https://bughunters.google.com/blog/5424842357473280/zen-and-the-art-of-microcode-hacking
 CVE-2024-55456 (lunasvg v3.0.1 was discovered to contain a segmentation violation via  ...)
 	NOT-FOR-US: lunasvg
 CVE-2024-54840 (PVWA (Password Vault Web Access) in CyberArk Privileged Access Manager ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bfdfc184862b7bc9b425cf056060be494fafedff

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bfdfc184862b7bc9b425cf056060be494fafedff
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250306/8f3922e5/attachment.htm>