Vulnerability Information: - Package: intel-microcode - CVE IDs: CVE-2020-24489, CVE-2020-24511, CVE-2020-24512, CVE-2020-24513 - Description: This update fixes CPU microcode for some Intel CPUs, mitigating vulnerabilities that could lead to privilege escalation and side-channel attacks in combination with VT-d. Affected Version: - Stable distribution (buster) fixed in version 3.20210608.2-deb10u1. Known Issues: - May break iwlwifi on some CoffeeLake CPUs. - May hang on boot for Skylake R0/D0 CPUs with very outdated firmware/BIOS. Solution: - Disable microcode loading on boot to recover if affected. - Upgrade to the latest intel-microcode packages. Additional Resources: - Debian Security Advisory: DSA-4934-1 - Security Tracker: https://security-tracker.debian.org/tracker/intel-microcode