INFCBA-2025:12877: linux-firmware security update
Information about definition
Identificator: INFCBA-2025:12877
Type: bugfix
Release date: 2025-09-23 14:59:15 UTC
Information about package
The linux-firmware packages contain all of the firmware files that are required by various devices to operate.
Vulnerabilities description
- CVE-2024-36350
A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information. Bug Fixes and Enhancements: * Update linux-firmware to latest upstream [rhel-9.6.z].
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-36350
|
no information | 5.6 | no information |
Updated packages
Preparing to download...