Security update for kernel-firmware SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:1770-1 Final 1 1 2019-07-21T05:37:32Z current 2019-07-21T05:37:32Z 2019-07-21T05:37:32Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for kernel-firmware This update for kernel-firmware fixes the following issues: kernel-firmware was updated to version 20190618: * cavium: Add firmware for CNN55XX crypto driver. * linux-firmware: Update firmware file for Intel Bluetooth 22161 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: Update AMD SEV firmware (CVE-2019-9836, bsc#1139383) * linux-firmware: update licence text for Marvell firmware * linux-firmware: update firmware for mhdp8546 * linux-firmware: rsi: update firmware images for Redpine 9113 chipset * imx: sdma: update firmware to v3.5/v4.5 * nvidia: update GP10[2467] SEC2 RTOS with the one already used on GP108 * linux-firmware: Update firmware file for Intel Bluetooth 8265 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * amlogic: add video decoder firmwares * iwlwifi: update -46 firmwares for 22260 and 9000 series * iwlwifi: add firmware for 22260 and update 9000 series -46 firmwares * iwlwifi: add -46.ucode firmwares for 9000 series * amdgpu: update vega20 to the latest 19.10 firmware * amdgpu: update vega12 to the latest 19.10 firmware * amdgpu: update vega10 to the latest 19.10 firmware * amdgpu: update polaris11 to the latest 19.10 firmware * amdgpu: update polaris10 to the latest 19.10 firmware * amdgpu: update raven2 to the latest 19.10 firmware * amdgpu: update raven to the latest 19.10 firmware * amdgpu: update picasso to the latest 19.10 firmware * linux-firmware: update fw for qat devices * Mellanox: Add new mlxsw_spectrum firmware 13.2000.1122 * drm/i915/firmware: Add ICL HuC v8.4.3238 * drm/i915/firmware: Add ICL GuC v32.0.3 * drm/i915/firmware: Add GLK HuC v03.01.2893 * drm/i915/firmware: Add GLK GuC v32.0.3 * drm/i915/firmware: Add KBL GuC v32.0.3 * drm/i915/firmware: Add SKL GuC v32.0.3 * drm/i915/firmware: Add BXT GuC v32.0.3 * linux-firmware: Add firmware file for Intel Bluetooth 22161 * cxgb4: update firmware to revision 1.23.4.0 (bsc#1136334) * linux-firmware: Update NXP Management Complex firmware to version 10.14.3 * linux-firmware: add firmware for MT7615E * mediatek: update MT8173 VPU firmware to v1.1.2 [decoder] Enlarge struct vdec_pic_info to support more capture buffer plane and capture buffer format change. * linux-firmware: update Marvell 8797/8997 firmware images * nfp: update Agilio SmartNIC flower firmware to rev AOTC-2.10.A.23 This update was imported from the SUSE:SLE-15:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-1770 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IBFCZJCARD575HACDC5NK3INX5NGEA32/#IBFCZJCARD575HACDC5NK3INX5NGEA32 E-Mail link for openSUSE-SU-2019:1770-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1136334 SUSE Bug 1136334 https://bugzilla.suse.com/1136498 SUSE Bug 1136498 https://bugzilla.suse.com/1139383 SUSE Bug 1139383 https://www.suse.com/security/cve/CVE-2019-9836/ SUSE CVE CVE-2019-9836 page openSUSE Leap 15.0 openSUSE Leap 15.1 kernel-firmware-20190618-lp151.2.6.1 ucode-amd-20190618-lp151.2.6.1 kernel-firmware-20190618-lp151.2.6.1 as a component of openSUSE Leap 15.0 ucode-amd-20190618-lp151.2.6.1 as a component of openSUSE Leap 15.0 kernel-firmware-20190618-lp151.2.6.1 as a component of openSUSE Leap 15.1 ucode-amd-20190618-lp151.2.6.1 as a component of openSUSE Leap 15.1 Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation. CVE-2019-9836 openSUSE Leap 15.0:kernel-firmware-20190618-lp151.2.6.1 openSUSE Leap 15.0:ucode-amd-20190618-lp151.2.6.1 openSUSE Leap 15.1:kernel-firmware-20190618-lp151.2.6.1 openSUSE Leap 15.1:ucode-amd-20190618-lp151.2.6.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IBFCZJCARD575HACDC5NK3INX5NGEA32/#IBFCZJCARD575HACDC5NK3INX5NGEA32 https://www.suse.com/security/cve/CVE-2019-9836.html CVE-2019-9836 https://bugzilla.suse.com/1139383 SUSE Bug 1139383