Ó¢Ìضû¶à¸ö²úÆ·Îó²îÇ徲ͨ¸æ

Ðû²¼Ê±¼ä 2019-05-23

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2019-11085£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º8.8£¬£¬£¬ £¬£¬¹Ù·½£º7.8
CVE±àºÅ£ºCVE-2019-11094£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.5£¬£¬£¬ £¬£¬¹Ù·½£º7.8
CVE±àºÅ£ºCVE-2019-0153£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.0£¬£¬£¬ £¬£¬¹Ù·½£º9.8
CVE±àºÅ£ºCVE-2019-0126£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.2£¬£¬£¬ £¬£¬¹Ù·½£º6.7
CVE±àºÅ£ºCVE-2019-0089£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º8.1£¬£¬£¬ £¬£¬¹Ù·½£º6.7
CVE±àºÅ£ºCVE-2019-0090£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.1£¬£¬£¬ £¬£¬¹Ù·½£º6.8
CVE±àºÅ£ºCVE-2019-0086£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.8£¬£¬£¬ £¬£¬¹Ù·½£º7.8

CVE±àºÅ£ºCVE-2019-0170£¬£¬£¬ £¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬ £¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º8.2£¬£¬£¬ £¬£¬¹Ù·½£º6.7


Ó°Ïì°æ±¾


ÊÜÓ°ÏìµÄ°æ±¾
CVE-2019-11085
»ùÓÚLinuxƽ̨µÄIntel(R) i915 Graphics 5.0֮ǰ°æ±¾ÖеÄKernel Mode Driver
CVE-2019-11094
Intel (R) NUC KitÖеÄϵͳ¹Ì¼þ
CVE-2019-0153
Intel(R) CSME 12.0.0 through 12.0.34
CVE-2019-0126
Intel(R) Xeon(R) Scalable ProcessorºÍIntel(R) Xeon(R) Processor D FamilyÖеÄsilicon reference¹Ì¼þ
CVE-2019-0089
Intel(R) SPSÖеÄ×Óϵͳ
CVE-2019-0090
Intel(R) CSME 12.0.35֮ǰ°æ±¾ºÍIntel(R) SPS SPS_E3_05.00.04.027.0֮ǰ°æ±¾
CVE-2019-0086
Intel(R) CSMEºÍIntel(R) TXEÖеÄDynamic Application¼ÓÔØÈí¼þ
CVE-2019-0170

Intel(R) DAL 12.0.35֮ǰ°æ±¾ÖеÄ×Óϵͳ


Îó²î¸ÅÊö


Ó¢ÌضûÐû²¼¶à¸ö²úÆ·Îó²îÈçÏ£º
CVE-2019-11085
¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úƷδ¶ÔÊäÈëµÄÊý¾Ý¾ÙÐÐ׼ȷµÄÑéÖ¤¡£¡£¡£¡£¡£¡£
CVE-2019-11094
¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úƷδ¶ÔÊäÈëµÄÊý¾Ý¾ÙÐÐ׼ȷµÄÑéÖ¤¡£¡£¡£¡£¡£¡£
CVE-2019-0153
¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úÆ·ÔÚÄÚ´æÉÏÖ´ÐвÙ×÷ʱ£¬£¬£¬ £¬£¬Î´×¼È·ÑéÖ¤Êý¾Ý½çÏߣ¬£¬£¬ £¬£¬µ¼ÖÂÏò¹ØÁªµÄÆäËûÄÚ´æλÖÃÉÏÖ´ÐÐÁ˹ýʧµÄ¶Áд²Ù×÷¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²îµ¼Ö»º³åÇøÒç³ö»ò¶ÑÒç³öµÈ¡£¡£¡£¡£¡£¡£
CVE-2019-0126
¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úƷδ׼ȷÏÞÖÆÀ´×ÔδÊÚȨ½ÇÉ«µÄ×ÊÔ´»á¼û¡£¡£¡£¡£¡£¡£
CVE-2019-0089
¸ÃÎó²îÔ´ÓÚ³ÌÐòûÓÐ׼ȷ¹ýÂËÊý¾Ý¡£¡£¡£¡£¡£¡£ÍâµØ¹¥»÷Õß¿ÉʹÓøÃÎó²îÌáÉýȨÏÞ¡£¡£¡£¡£¡£¡£
CVE-2019-0090
¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úƷδ׼ȷÏÞÖÆÀ´×ÔδÊÚȨ½ÇÉ«µÄ×ÊÔ´»á¼û¡£¡£¡£¡£¡£¡£
CVE-2019-0086
¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úƷδ׼ȷÏÞÖÆÀ´×ÔδÊÚȨ½ÇÉ«µÄ×ÊÔ´»á¼û¡£¡£¡£¡£¡£¡£
CVE-2019-0170

¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úÆ·ÔÚÄÚ´æÉÏÖ´ÐвÙ×÷ʱ£¬£¬£¬ £¬£¬Î´×¼È·ÑéÖ¤Êý¾Ý½çÏߣ¬£¬£¬ £¬£¬µ¼ÖÂÏò¹ØÁªµÄÆäËûÄÚ´æλÖÃÉÏÖ´ÐÐÁ˹ýʧµÄ¶Áд²Ù×÷¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²îµ¼Ö»º³åÇøÒç³ö»ò¶ÑÒç³öµÈ¡£¡£¡£¡£¡£¡£


Îó²îÑéÖ¤


ÔÝÎÞPOC/EXP¡£¡£¡£¡£¡£¡£


ÐÞ¸´½¨Òé


ÏÖÔÚ³§ÉÌÒÑÐû²¼Éý¼¶²¹¶¡ÒÔÐÞ¸´Îó²î£¬£¬£¬ £¬£¬²¹¶¡»ñÈ¡Á´½Ó¼û²Î¿¼Á´½Ó¡£¡£¡£¡£¡£¡£


²Î¿¼Á´½Ó


https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00249.html
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00251.html
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00223.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00213.html