Want more timely Centmin Mod News Updates?
Become a Member

CentOS 7.x CentOS 7.8 servers with yum update lock up bug - microcode_ctl for CVE-2020-0543

Discussion in 'CentOS, Redhat & Oracle Linux News' started by eva2000, Jun 16, 2020.

  1. eva2000

    eva2000 Administrator Staff Member

    44,417
    10,144
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,692
    Local Time:
    11:33 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    From 0017452: microcode_ctl for CVE-2020-0543 is causing X11SSL-F with E3-12xx v5 Formerly Known as Skylake - CentOS Bug Tracker for CentOS 7.8 is causing issues for specific web host/servers using Intel Xeon E3-12xx v5 Skylake cpus and specific Supermicro motherboard models. The bug was reported by staff at Hivelocity.net web host. I recall receiving an email they send out to clients warning of this issue but didn't need to do anything for my clients as Hivelocity took care it. Also seems Ubuntu are affected too USN-4385-2: Intel Microcode regression | Ubuntu security notices

    I believe @Matt has Hivelocity clients too so probably aware of this too.
    ouch !
     
  2. pamamolf

    pamamolf Premium Member Premium Member

    3,807
    369
    83
    May 31, 2014
    Ratings:
    +711
    Local Time:
    4:33 AM
    Nginx-1.17.x
    MariaDB 10.3.x
    Is that only for E3-12xx cpu series or specific E3-12xx v5?
     
    Last edited: Jun 17, 2020
  3. eva2000

    eva2000 Administrator Staff Member

    44,417
    10,144
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,692
    Local Time:
    11:33 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    I think it's specific cpu E3-12xx v5 and motherboard combination as microcode updates are basically software based cpu firmware updates/patches instead of needing to update motherboard bios and the update is kept in memory so applies every server reboot. CentOS does this via microcode_ctl YUM package. So imagine having a bad bios update and consequences which may occur.
     
  4. eva2000

    eva2000 Administrator Staff Member

    44,417
    10,144
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,692
    Local Time:
    11:33 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    more details and cpus are affected it seems Issues with the recent CVE update (CVE-2020-0543) and on CloudLinux operating system so not only CentOS, Redhat and Ubuntu.

    The microcode firmware update for cpu was to patch a security issue CVE-2020-0543