Intel Product Security Advisories and Notices

SINIT Buffer Overflow Vulnerability

Tue, 06 Dec 2011 04:05:29 -0500

Intel® Trusted Execution Technology SINIT Authenticated Code Modules (ACMs) are susceptible to a buffer overflow issue. Intel is providing updated SINIT ACMs to mitigate this issue and microcode updates to revoke vulnerable SINIT ACMs.

Intel® Active System Console v4.4 and Intel® Multi-Server Manager v1.0 Denial of Service

Tue, 09 Aug 2011 04:05:25 -0400

Intel® Active System Console is a lightweight console that gives basic server hardware healthy monitoring capabilities on single server. Intel® Multi-Server Manager allows IT administrators to manage server hardware healthy for group of servers from a single console. Intel is releasing a software update to mitigate a denial of service issue with Intel® Active System Console version 4.4 and Intel® Multi-Server Manager version 1.0.

Intel® Ethernet 82598 and 82599 10 Gigabit Ethernet Controller Denial of Service.

Thu, 19 May 2011 04:05:22 -0400

Intel is releasing a driver update to mitigate a denial of service issue with the Intel® 10 Gigabit Ethernet 82598 and 82599 Controllers.

Intel® C++ Compiler and Intel® Fortran Compiler Insecure File Permission Local Privilege Escalation Vulnerability

Tue, 21 Dec 2010 04:05:23 -0500

Updated software is available for the customers using Intel® C++ Compiler Professional Edition for Linux* and Intel® Fortran Compiler Professional Edition for Linux* to mitigate a local privilege escalation vulnerability which could potentially be triggered during the compilation process.

Intel®Xeon® 5500, 5600 Series Baseboard Management Component (BMC) Firmware Privilege Escalation

Tue, 02 Nov 2010 03:05:25 -0500

Intel is releasing a firmware update to mitigate a privilege escalation issue with Intel®Xeon® 5500, 5600 Series Baseboard Management Component (BMC) Firmware.

OpenSSL* vulnerability – Software Development Tools for Intel® Active Management Technology (Intel® AMT)

Wed, 21 Jul 2010 04:05:21 -0400

In response to the OpenSSL* advisory (CVE-2010-0740), Intel is releasing an update to the Intel® Active Management Technology (Intel® AMT) Software Development Kit (SDK)and Intel® Setup and Configuration Service (Intel® SCS) to mitigate this vulnerability. This issue does not affect the Intel® Active Management Technology implementation on Intel® vPro TM technology based platforms. The Intel® AMT SDK is the development framework for the Independent Software Vendors (ISVs) to develop manageability...

Intel® Math Kernel Library Insecure File Permission Local Privilege Escalation

Wed, 21 Jul 2010 04:05:21 -0400

The Intel® Math Kernel Library (Intel® MKL) is a library of highly optimized, extensively threaded math routines for science, engineering, and financial applications that require maximum performance. An updated version of the software is available for Intel® MKL users to mitigate this vulnerability.

Intel® Active Management Technology Software Development Kit Remote Code Execution

Tue, 30 Mar 2010 03:05:31 -0500

Intel® Active Management Technology (Intel® AMT) Software Development Kit (SDK) is the development framework for the independent software vendors (ISVs) to develop manageability applications that interact with Intel® AMT-enabled systems. Updated software which corrects a potential stack overflow issue is available for the ISVs to update their applications developed using the SDK.

Intel® Desktop Boards Privilege Escalation

Tue, 02 Feb 2010 04:05:23 -0500

Software running administrative (ring 0) privilege can under certain circumstances change code running in System Management Mode.

SINIT misconfiguration allows for Privilege Escalation

Tue, 22 Dec 2009 04:05:22 -0500

An updated SINIT Authenticated Code Module (ACM) is available for affected Intel products to correct a misconfiguration that allows for the circumvention of Intel® Trusted Execution Technology.

Intel® Desktop Board Buffer Overflow Local Privilege Escalation

Sat, 31 Oct 2009 03:05:23 -0500

Updated BIOS is available for Intel® Desktop Board products to correct a buffer overflow in the Bitmap processing code.

New BIOS available for Intel® Desktop Board products BIOS to prevent unauthorized downgrading to a previous BIOS version.

Sat, 17 Oct 2009 04:05:22 -0400

New BIOS is available for Intel® Desktop Board products BIOS to prevent downgrading to a previous BIOS version without supervisor/admin permission.

Intel® Desktop and Intel® Server Boards Privilege Escalation

Wed, 29 Jul 2009 04:05:22 -0400

Software running administrative (ring 0) privilege can under certain circumstances change code running in System Management Mode.

Intel® Desktop and Intel® Mobile Boards Privilege Escalation

Tue, 26 Aug 2008 03:14:20 -0400

Software running administrative (ring 0) privilege can under certain circumstances change code running in System Management Mode.

Intel Keyboard Buffer Information Disclosure Vulnerability

Tue, 26 Aug 2008 03:14:20 -0400

Specific Intel BIOS's fail to sanitize user input entered during the Power On Self Test, POST, process. Under certain situations this issue could potentially result in a disclosure of information.