Intel's problems are only on the rise in recent times. Recently the Plundervolt vulnerability based on the modification of the voltage during overclocking. To mitigate the latest vulnerabilities in Intel processors, The Debian Project has released a security microcode update. This mitigation is focused on Xeon processors and 14nm lithography processors.
And is that Intel's problems are important in recent years. A major vulnerability has been discovered, even in the encryption core where key information is stored. Plundervolt allows by adjusting the voltage to alter voltage parameters, returning the encrypted keys.
[amazon box="B005404P9I"]Debian fixes a vulnerability in Intel processors
On December 13th Debian implemented a new microcode for Intel CPUs. The update is based on the TAA (TSX Asynchronous Abort) vulnerabilities described as CVE-2019-11135. Unfortunately not all Intel processors are covered by this update, although it has now been fixed. The new update covers the security of Coffee Lake processors
This update includes updated CPU microcode for CFL-S (Coffee Lake Desktop) models that were not yet included in the Intel microcode update released as DSA 4565-1, ”the security advisory says. “We recommend that you update your microcode packages
Also fixes security issue with signature 0x50654 for Intel HEDT and Xeon processors. The issue could cause the system to hang on warm reboots due to rolling back the CPU microcode. Users are requested to update as soon as possible and also install the latest Linux kernel update.
Debian GNU / Linux 9 'oldstable' 'Stretch' distribution has to update the Intel microcode to version 3.20191115.2 ~ deb9u1. Debian GNU / Linux 10 stable 'Buster' series has to update microcode to version 3.20191115.2 ~ deb10u1. When we install these microcodes we must restart the system, of course.
Source: Softpedia
