diff --git a/issues/CVE-2023-23583/index.html b/issues/CVE-2023-23583/index.html index fc49715..2c01528 100644 --- a/issues/CVE-2023-23583/index.html +++ b/issues/CVE-2023-23583/index.html @@ -607,7 +607,7 @@
4:20231114-1.el9_2.security
available November 15, 2023Please refer to our override package of microcode_ctl.
+Please refer to our override package of microcode_ctl.
2.34-60.el9_2.security.0.2
available October 3, 2023glibc-2.34-60.el9_2.7
available October 5, 2023Besides the upstream fix, we also retained the mitigation in our override package of glibc.
+Besides the upstream fix, we also retained the mitigation in our override package of glibc.
glibc-0:2.28-225.el8_8.6
available October 5, 2023tmpfile(3)
use the TMPDIR
environment variable (when not running SUID/SGID/setcap) (ALT Linux)2.34-60.el9_2.security.0.2
included mitigations sufficient to avoid security exposure of CVE-2023-4911 and a backport of upstream glibc fix of CVE-2023-4527 that was not yet in upstream EL. In the update to 2.34-60.7.el9_2.security.0.3
, we retained the mitigations while rebasing on upstream EL's package with upstream fixes for these vulnerabilities (and more).
2.34-60.el9_2.security.0.2
included mitigations sufficient to avoid security exposure of CVE-2023-4911 and a backport of upstream glibc fix of CVE-2023-4527 that was not yet in upstream EL. In the update to 2.34-60.7.el9_2.security.0.3
, we retained the mitigations while rebasing on upstream EL's package with upstream fixes for these vulnerabilities (and more).
In general, inclusion of additional security fixes will be "reverted" if and when those get included in upstream EL packages that we rebase our changes on.
* Fri Oct 6 2023 Solar Designer <solar@openwall.com> - 2.34-60.7.el9.security.0.3
@@ -673,7 +673,7 @@
Last update:
- October 13, 2023
+ November 15, 2023
diff --git a/packages/microcode_ctl/index.html b/packages/microcode_ctl/index.html
index 97058b1..8aca6c3 100644
--- a/packages/microcode_ctl/index.html
+++ b/packages/microcode_ctl/index.html
@@ -599,7 +599,7 @@
Changes summary¶
-- Update Intel CPU microcode to microcode-20231114 (fixes CVE-2023-23583), temporarily dropping most documentation patches
+- Update Intel CPU microcode to microcode-20231114 (fixes CVE-2023-23583), temporarily dropping most documentation patches
Change log¶
* Tue Nov 14 2023 Solar Designer <solar@openwall.com> - 4:20231114-1
diff --git a/sitemap.xml.gz b/sitemap.xml.gz
index 145f2b1..3acf87c 100644
Binary files a/sitemap.xml.gz and b/sitemap.xml.gz differ