Discover Centmin Mod today
Register Now

CentOS 7.x CentOS 7.8 servers with yum update lock up bug - microcode_ctl for CVE-2020-0543

Discussion in 'CentOS, Redhat & Oracle Linux News' started by eva2000, Jun 16, 2020.

  1. eva2000

    eva2000 Administrator Staff Member

    54,583
    12,224
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,793
    Local Time:
    3:25 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    From 0017452: microcode_ctl for CVE-2020-0543 is causing X11SSL-F with E3-12xx v5 Formerly Known as Skylake - CentOS Bug Tracker for CentOS 7.8 is causing issues for specific web host/servers using Intel Xeon E3-12xx v5 Skylake cpus and specific Supermicro motherboard models. The bug was reported by staff at Hivelocity.net web host. I recall receiving an email they send out to clients warning of this issue but didn't need to do anything for my clients as Hivelocity took care it. Also seems Ubuntu are affected too USN-4385-2: Intel Microcode regression | Ubuntu security notices

    I believe @Matt has Hivelocity clients too so probably aware of this too.
    ouch !

     
  2. pamamolf

    pamamolf Premium Member Premium Member

    4,084
    428
    83
    May 31, 2014
    Ratings:
    +834
    Local Time:
    7:25 PM
    Nginx-1.25.x
    MariaDB 10.3.x
    Is that only for E3-12xx cpu series or specific E3-12xx v5?
     
    Last edited: Jun 17, 2020
  3. eva2000

    eva2000 Administrator Staff Member

    54,583
    12,224
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,793
    Local Time:
    3:25 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    I think it's specific cpu E3-12xx v5 and motherboard combination as microcode updates are basically software based cpu firmware updates/patches instead of needing to update motherboard bios and the update is kept in memory so applies every server reboot. CentOS does this via microcode_ctl YUM package. So imagine having a bad bios update and consequences which may occur.
     
  4. eva2000

    eva2000 Administrator Staff Member

    54,583
    12,224
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,793
    Local Time:
    3:25 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    more details and cpus are affected it seems Issues with the recent CVE update (CVE-2020-0543) and on CloudLinux operating system so not only CentOS, Redhat and Ubuntu.

    The microcode firmware update for cpu was to patch a security issue CVE-2020-0543