CVE-2024-21853

NameCVE-2024-21853
DescriptionImproper finite state machines (FSMs) in the hardware logic in some 4th and 5th Generation Intel(R) Xeon(R) Processors may allow an authorized user to potentially enable denial of service via local access.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs1087532

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
intel-microcode (PTS)jessie/non-free3.20240910.1~deb8u1vulnerable
jessie/non-free (lts)3.20230214.1~deb8u1vulnerable
stretch/non-free3.20240910.1~deb9u1vulnerable
stretch/non-free (security)3.20210608.2~deb9u2vulnerable
stretch/non-free (lts)3.20230214.1~deb9u1vulnerable
buster/non-free3.20240910.1~deb10u1vulnerable
buster/non-free (security)3.20240312.1~deb10u1vulnerable
bullseye/non-free3.20240813.1~deb11u1vulnerable
bullseye/non-free (security)3.20240910.1~deb11u1vulnerable
bookworm/non-free-firmware3.20240910.1~deb12u1vulnerable
bookworm/non-free-firmware (security)3.20231114.1~deb12u1vulnerable
trixie/non-free-firmware, sid/non-free-firmware3.20241112.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
intel-microcodesource(unstable)3.20241112.11087532

Notes

[bookworm] - intel-microcode <no-dsa> (Minor issue)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01101.html
https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20241112

Search for package or bug name: Reporting problems