ELA-121-1 intel-microcode security update

microarchitectural data sampling vulnerabilities

Related CVEs CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091

This update ships updated CPU microcode for most types of Intel CPUs. It provides microcode support to implement mitigations for the MSBDS, MFBDS, MLPDS and MDSUM hardware vulnerabilities.

To fully resolve these vulnerabilities it is also necessary to update the Linux kernel packages. An update for that will follow soon.

For Debian 7 Wheezy, these problems have been fixed in version 3.20190514.1~deb7u1.

We recommend that you upgrade your intel-microcode packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/