The Debian Project released a new intel-microcode security update for Intel CPU microarchitectures to address a regression affecting HEDT and Xeon processors, and add mitigations for Coffe Lake CPUs.
Last month on November 13th, the Debian Project shipped updated CPU microcode for various types of Intel CPUs to mitigate the TAA (TSX Asynchronous Abort) vulnerability (CVE-2019-11135). But not all Intel CPU models were covered by the update, so they released a new intel-microcode security update that addresses this flaw for Coffe Lake processors too.
“This update ships updated CPU microcode for CFL-S (Coffe Lake Desktop) models of Intel CPUs which were not yet included in the Intel microcode update released as DSA 4565-1,” reads the security advisory. “We recommend that you upgrade your intel-microcode packages.”
… (read more)