CVE-2023-39368: Medium severity ubuntu/intel-microcode vulnerability

Q: What is the severity of CVE-2023-39368?

CVE-2023-39368 is classified as a medium severity vulnerability that could lead to a denial of service.

Q: How do I fix CVE-2023-39368?

To fix CVE-2023-39368, update the intel-microcode package to the specified versions based on your distribution.

Q: What are the affected systems for CVE-2023-39368?

CVE-2023-39368 affects certain Intel processors that utilize the intel-microcode package on Ubuntu and Debian systems.

Q: Can CVE-2023-39368 be exploited remotely?

Yes, CVE-2023-39368 can potentially be exploited by an unauthenticated user via network access.

Q: How can I determine if I am vulnerable to CVE-2023-39368?

You can determine your vulnerability to CVE-2023-39368 by checking the version of the intel-microcode package installed on your system.

Published Mar 12, 2024

Updated

Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access.

Affected Software

6 affected componentsFixes available

ubuntu/intel-microcode<3.20240514.0ubuntu0.18.04.1+

3.20240514.0ubuntu0.18.04.1+

ubuntu/intel-microcode<3.20240514.0ubuntu0.20.04.1

3.20240514.0ubuntu0.20.04.1

ubuntu/intel-microcode<3.20240514.0ubuntu0.22.04.1

3.20240514.0ubuntu0.22.04.1

ubuntu/intel-microcode<3.20240514.0ubuntu0.23.10.1

3.20240514.0ubuntu0.23.10.1

ubuntu/intel-microcode<3.20240514.0ubuntu0.16.04.1+

3.20240514.0ubuntu0.16.04.1+

debian/intel-microcode<=3.20231114.1~deb11u1, <=3.20231114.1~deb12u1

3.20240514.1~deb11u13.20240514.1~deb12u13.20240813.2

Event History

Mar 12, 2024

CVE Published

via Ubuntu·12:00 AM

Mar 14, 2024

CVE Published

via MITRE·04:45 PM

Data Sourced

via MITRE·04:45 PM

DescriptionSeverityWeakness

Data Sourced

via NVD·05:15 PM

DescriptionSeverityWeakness

Mar 21, 2024

Data Sourced

via Red Hat·01:52 PM

DescriptionSeverityAffected Software

May 29, 2024

Data Sourced

via Launchpad·12:47 PM

Description

Parent advisories

This vulnerability appears in the following advisories.

USN-6797-1

Frequently Asked Questions

What is the severity of CVE-2023-39368?

CVE-2023-39368 is classified as a medium severity vulnerability that could lead to a denial of service.

How do I fix CVE-2023-39368?

To fix CVE-2023-39368, update the intel-microcode package to the specified versions based on your distribution.

What are the affected systems for CVE-2023-39368?

CVE-2023-39368 affects certain Intel processors that utilize the intel-microcode package on Ubuntu and Debian systems.

Can CVE-2023-39368 be exploited remotely?

Yes, CVE-2023-39368 can potentially be exploited by an unauthenticated user via network access.

How can I determine if I am vulnerable to CVE-2023-39368?

You can determine your vulnerability to CVE-2023-39368 by checking the version of the intel-microcode package installed on your system.

CVE-2023-39368: Medium severity ubuntu/intel-microcode vulnerability

Affected Software

Event History

Parent advisories

Don't miss critical vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2023-39368?

How do I fix CVE-2023-39368?

What are the affected systems for CVE-2023-39368?

Can CVE-2023-39368 be exploited remotely?

How can I determine if I am vulnerable to CVE-2023-39368?

Company

Resources

Contact