Security update for kernel-firmware SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:1803-1 Final 1 1 2019-07-10T07:40:15Z current 2019-07-10T07:40:15Z 2019-07-10T07:40:15Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for kernel-firmware This update for kernel-firmware fixes the following issues: kernel-firmware was updated to version 20190618: * cavium: Add firmware for CNN55XX crypto driver. * linux-firmware: Update firmware file for Intel Bluetooth 22161 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: Update AMD SEV firmware (CVE-2019-9836, bsc#1139383) * linux-firmware: update licence text for Marvell firmware * linux-firmware: update firmware for mhdp8546 * linux-firmware: rsi: update firmware images for Redpine 9113 chipset * imx: sdma: update firmware to v3.5/v4.5 * nvidia: update GP10[2467] SEC2 RTOS with the one already used on GP108 * linux-firmware: Update firmware file for Intel Bluetooth 8265 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * amlogic: add video decoder firmwares * iwlwifi: update -46 firmwares for 22260 and 9000 series * iwlwifi: add firmware for 22260 and update 9000 series -46 firmwares * iwlwifi: add -46.ucode firmwares for 9000 series * amdgpu: update vega20 to the latest 19.10 firmware * amdgpu: update vega12 to the latest 19.10 firmware * amdgpu: update vega10 to the latest 19.10 firmware * amdgpu: update polaris11 to the latest 19.10 firmware * amdgpu: update polaris10 to the latest 19.10 firmware * amdgpu: update raven2 to the latest 19.10 firmware * amdgpu: update raven to the latest 19.10 firmware * amdgpu: update picasso to the latest 19.10 firmware * linux-firmware: update fw for qat devices * Mellanox: Add new mlxsw_spectrum firmware 13.2000.1122 * drm/i915/firmware: Add ICL HuC v8.4.3238 * drm/i915/firmware: Add ICL GuC v32.0.3 * drm/i915/firmware: Add GLK HuC v03.01.2893 * drm/i915/firmware: Add GLK GuC v32.0.3 * drm/i915/firmware: Add KBL GuC v32.0.3 * drm/i915/firmware: Add SKL GuC v32.0.3 * drm/i915/firmware: Add BXT GuC v32.0.3 * linux-firmware: Add firmware file for Intel Bluetooth 22161 * cxgb4: update firmware to revision 1.23.4.0 (bsc#1136334) * linux-firmware: Update NXP Management Complex firmware to version 10.14.3 * linux-firmware: add firmware for MT7615E * mediatek: update MT8173 VPU firmware to v1.1.2 [decoder] Enlarge struct vdec_pic_info to support more capture buffer plane and capture buffer format change. * linux-firmware: update Marvell 8797/8997 firmware images * nfp: update Agilio SmartNIC flower firmware to rev AOTC-2.10.A.23 The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES15-SAP-Azure-LI-BYOS-Production-2019-1803,Image SLES15-SAP-Azure-VLI-BYOS-Production-2019-1803,SUSE-2019-1803,SUSE-SLE-Module-Basesystem-15-2019-1803 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20191803-1/ Link for SUSE-SU-2019:1803-1 https://lists.suse.com/pipermail/sle-security-updates/2019-July/005683.html E-Mail link for SUSE-SU-2019:1803-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1136334 SUSE Bug 1136334 https://bugzilla.suse.com/1136498 SUSE Bug 1136498 https://bugzilla.suse.com/1139383 SUSE Bug 1139383 https://www.suse.com/security/cve/CVE-2019-9836/ SUSE CVE CVE-2019-9836 page Image SLES15-SAP-Azure-LI-BYOS-Production Image SLES15-SAP-Azure-VLI-BYOS-Production SUSE Linux Enterprise Module for Basesystem 15 kernel-firmware-20190618-3.22.1 ucode-amd-20190618-3.22.1 kernel-firmware-20190618-3.22.1 as a component of Image SLES15-SAP-Azure-LI-BYOS-Production kernel-firmware-20190618-3.22.1 as a component of Image SLES15-SAP-Azure-VLI-BYOS-Production kernel-firmware-20190618-3.22.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 ucode-amd-20190618-3.22.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation. CVE-2019-9836 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-firmware-20190618-3.22.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-firmware-20190618-3.22.1 SUSE Linux Enterprise Module for Basesystem 15:kernel-firmware-20190618-3.22.1 SUSE Linux Enterprise Module for Basesystem 15:ucode-amd-20190618-3.22.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191803-1/ https://www.suse.com/security/cve/CVE-2019-9836.html CVE-2019-9836 https://bugzilla.suse.com/1139383 SUSE Bug 1139383