[Bug 1977701] Re: Update to latest upstream release 20220510 / IPU 2022.1 to fix multiple security vulnerabilities

Alex Murray 1977701 at bugs.launchpad.net
Mon Jun 6 06:51:28 UTC 2022 

** Description changed:

  Intel released version 20220510 / IPU 2022.1 earlier in May to address
  multiple vulnerabilities, including:
  
-     - CVE-2022-21151, INTEL-SA-00617
-     - CVE-2021-0146,  INTEL-SA-00528
-     - CVE-2021-0127,  INTEL-SA-00532
+     - CVE-2022-21151, INTEL-SA-00617
+     - CVE-2021-0146,  INTEL-SA-00528
+     - CVE-2021-0127,  INTEL-SA-00532
  
  This version is already packaged in Ubuntu 22.10 (kinetic).
  
  Whilst this is a security update, to allow for increased testing before
  being more widely deployed the Ubuntu Security team are wishing to
- publish this first via -proposed and then to -updates at which point it
- will also then be published to -security.
+ publish this first via -proposed and then to -security at which point it
+ will also then be published to -updates as per the usual
+ security->updates sync.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to intel-microcode in Ubuntu.
https://bugs.launchpad.net/bugs/1977701

Title:
  Update to latest upstream release 20220510 / IPU 2022.1 to fix
  multiple security vulnerabilities

Status in intel-microcode package in Ubuntu:
  New
Status in intel-microcode source package in Bionic:
  Fix Committed
Status in intel-microcode source package in Focal:
  Fix Committed
Status in intel-microcode source package in Impish:
  Fix Committed
Status in intel-microcode source package in Jammy:
  Fix Committed

Bug description:
  Intel released version 20220510 / IPU 2022.1 earlier in May to address
  multiple vulnerabilities, including:

      - CVE-2022-21151, INTEL-SA-00617
      - CVE-2021-0146,  INTEL-SA-00528
      - CVE-2021-0127,  INTEL-SA-00532

  This version is already packaged in Ubuntu 22.10 (kinetic).

  Whilst this is a security update, to allow for increased testing
  before being more widely deployed the Ubuntu Security team are wishing
  to publish this first via -proposed and then to -security at which
  point it will also then be published to -updates as per the usual
  security->updates sync.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/intel-microcode/+bug/1977701/+subscriptions

More information about the foundations-bugs mailing list