2021年6月8日(米国時間)、Intelから複数のセキュリティアドバイザリが公開されました。影響を受ける製品やバージョンについての詳細は、Intelのアドバイザリを参照いただき、影響範囲の確認と対策の実施をご検討ください。
INTEL-SA-00401: Intel Thunderbolt Controller Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00401.html
Intel Thunderbolt Controllerにサービス運用妨害(DoS)が可能な脆弱性
INTEL-SA-00440: Intel FPGA OPAE Driver Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00440.html
Intel FPGA OPAE Driverに権限昇格の脆弱性
INTEL-SA-00442: 2021.1 IPU - Intel VT-d Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00442.html
一部のIntel VT-d製品に権限昇格の脆弱性
INTEL-SA-00458: Intel Processor Diagnostics Tool Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00458.html
Intel Processor Diagnostics Toolに権限昇格の脆弱性
INTEL-SA-00459: 2021.1 IPU – Intel CSME, SPS and LMS Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00459.html
Intel CSME、SPSおよびLMSに権限昇格、情報漏えいの脆弱性
INTEL-SA-00460: Intel RealSense ID Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00460.html
Intel RealSense IDに権限昇格の脆弱性
INTEL-SA-00463: 2021.1 IPU – BIOS Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00463.html
一部のIntel ProcessorのBIOSに権限昇格、サービス運用妨害(DoS)が可能な脆弱性
INTEL-SA-00464: Intel Processor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html
Intel Processorに情報漏えいの脆弱性
INTEL-SA-00465: 2021.1 IPU - Intel Atom Processor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00465.html
一部のIntel Atom Processorに情報漏えいの脆弱性
INTEL-SA-00472: Intel ProSet/Wireless WiFi Driver Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00472.html
一部のIntel ProSet/Wireless WiFi Driverに情報漏えい、サービス運用妨害(DoS)が可能な脆弱性
INTEL-SA-00474: Intel Server Board M10JNP2SB Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00474.html
Intel Server Board M10JNP2SBのベースボード管理コントローラーのファームウェアに権限昇格、サービス運用妨害(DoS)が可能な脆弱性
INTEL-SA-00476: Intel Server Boards, Server Systems and Compute Modules Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00476.html
一部のIntel Server Boards、Server SystemsおよびCompute Modulesのベースボード管理コントローラーのファームウェアに権限昇格、サービス運用妨害(DoS)が可能な脆弱性
INTEL-SA-00477: Intel IPP and SGX Software Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00477.html
Intel IPP and SGX Softwareに情報漏えいの脆弱性
INTEL-SA-00500: Intel SPS Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00500.html
Intel SPSにサービス運用妨害(DoS)が可能な脆弱性
INTEL-SA-00505: Intel NUC 9 Extreme Laptop Kit LAN Driver Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00505.html
一部のIntel NUC 9 Extreme Laptop Kit LAN Driverに権限昇格の脆弱性
INTEL-SA-00506: Intel Unite Client for Windows Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00506.html
Intel Unite Client for Windowsに権限昇格の脆弱性
INTEL-SA-00507: Intel NUC M15 Laptop Kit Driver Pack Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00507.html
一部のIntel NUC M15 Laptop Kit Driver Packに権限昇格の脆弱性
INTEL-SA-00510: Intel DSA Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00510.html
Intel DSAに権限昇格の脆弱性
INTEL-SA-00511: Intel NUC Firmware Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00511.html
一部のIntel NUCに権限昇格の脆弱性
INTEL-SA-00516: Intel Processors Software Developer Guidance Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00516.html
一部のIntel Processorsに情報漏えいの脆弱性
INTEL-SA-00517: BlueZ Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00517.html
BlueZに情報漏えいの脆弱性
INTEL-SA-00518: Intel VTune Profiler Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00518.html
Intel VTune Profilerに権限昇格の脆弱性
INTEL-SA-00520: Intel Wireless Bluetooth and Killer Bluetooth Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00520.html
Intel Wireless BluetoothおよびKiller Bluetoothに情報漏えいの脆弱性
INTEL-SA-00521: Intel Security Library Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00521.html
Intel Security Libraryに権限昇格、サービス運用妨害(DoS)、情報漏えいの脆弱性
INTEL-SA-00530: Intel Computing Improvement Program Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00530.html
Intel Computing Improvement Programに権限昇格の脆弱性
INTEL-SA-00537: Intel SSD Data Center Tool Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00537.html
Intel SSD Data Center Toolに権限昇格の脆弱性
INTEL-SA-00541: Intel Optane DC Persistent Memory for Windows Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00541.html
Intel Optane DC Persistent Memory for Windowsに権限昇格の脆弱性
INTEL-SA-00545: Intel Rapid Storage Technology Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00545.html
Intel Rapid Storage Technologyに権限昇格の脆弱性
INTEL-SA-00546: Intel Brand Verification Tool Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00546.html
Intel Brand Verification Toolに権限昇格の脆弱性
Intel Corporation
Intel Product Security Center Advisories
https://www.intel.com/content/www/us/en/security-center/default.html
CyberNewsFlashは、注意喚起とは異なり、発行時点では注意喚起の基準に満たない脆弱性の情報やセキュリティアップデート予告なども含まれます。今回の件を含め、提供いただける情報がありましたら、JPCERT/CCまでご連絡ください。
一般社団法人JPCERTコーディネーションセンター(JPCERT/CC)
早期警戒グループ
Email:ew-info@jpcert.or.jp