6d8574d14b
Update CPU microcode to mitigate 4 variants of the data sampling flaw: - CVE-2018-12126 (Microarchitectural Store Buffer Data Sampling (MSBDS)) - CVE-2018-12127 (Microarchitectural Load Port Data Samping (MLPDS)) - CVE-2018-12130 (Microarchitectural Fill Buffer Data Sampling (MFBDS)) - CVE-2019-11091 (Microarchitectural Data Sampling Uncacheable Memory (MDSUM)) References: - https://seclists.org/bugtraq/2019/May/43 - https://security-tracker.debian.org/tracker/DSA-4447-1 - https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/MDS - https://www.intel.com/content/www/us/en/architecture-and-technology/mds.html
17 lines
606 B
Plaintext
17 lines
606 B
Plaintext
# Description: Intel CPU microcode update
|
|
# URL: https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File
|
|
# Maintainer: Pedja, predivan at mts dot rs
|
|
# Depends on: iucode-tool
|
|
|
|
name=intel-ucode
|
|
version=20190514
|
|
release=1
|
|
source=(https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/archive/microcode-$version.tar.gz)
|
|
|
|
build() {
|
|
cd Intel-Linux-Processor-Microcode-Data-Files-microcode-$version
|
|
install -d -m755 $PKG/boot
|
|
/usr/sbin/iucode_tool --write-earlyfw=early-ucode.cpio intel-ucode/
|
|
install -m644 early-ucode.cpio $PKG/boot/early-ucode.cpio
|
|
}
|