Bug 28274

Summary: linux-firmware new security issue CVE-2020-12321
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Kernel and Drivers maintainers <kernel>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: critical    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: kernel-firmware-nonfree CVE:
Status comment:

Description David Walser 2021-02-02 17:23:56 CET 
RedHat has issued an advisory today (February 2):
https://access.redhat.com/errata/RHSA-2021:0339

I don't have the correct package name, but I don't know if this is part of kernel-firmware-nonfree, microcode, or something else.
Comment 1 Thomas Backlund 2021-02-02 17:56:28 CET 
AX series got fixed in: https://advisories.mageia.org/MGAA-2020-0172.html

the rest got fixed in: https://advisories.mageia.org/MGAA-2020-0223.html


And we now have even newer firware available

Source RPM: (none) => kernel-firmware-nonfree
Resolution: (none) => FIXED
Status: NEW => RESOLVED