[Git][security-tracker-team/security-tracker][master] Add new INTEL-SA related CVE assignments

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon May 12 19:46:59 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
be899311 by Salvatore Bonaccorso at 2025-05-12T20:46:18+02:00
Add new INTEL-SA related CVE assignments

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,20 @@
+CVE-2025-20012
+	- intel-microcode <unfixed>
+	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01322.html
+	NOTE: https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20250512
+CVE-2025-24495
+	- intel-microcode <unfixed>
+	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01322.html
+	NOTE: https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20250512
+CVE-2024-28956 [x86: Indirect Target Selection]
+	- xen <unfixed>
+	[bullseye] - xen <end-of-life> (EOLed in Bullseye)
+	- intel-microcode <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-469.html
+	NOTE: https://www.vusec.net/projects/training-solo/
+	NOTE: https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/indirect-target-selection.html
+	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01153.html
+	NOTE: https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20250512
 CVE-2025-46805
 	- screen <unfixed> (unimportant)
 	NOTE: Fixed by: https://git.savannah.gnu.org/cgit/screen.git/commit/?id=161f85b98b7e1d5e4893aeed20f4cdb5e3dfaaa4



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be899311562b02cd03c4cd0e7d9baa3eaefb35c3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be899311562b02cd03c4cd0e7d9baa3eaefb35c3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250512/d1edceec/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list