CVE-2019-9836

MEDIUM5.3EPSS 0.24%

amd64-microcode - security update

Published: 6/25/2019Modified: 4/28/2026

Also known as:DEBIAN-CVE-2019-9836

Description

Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation.

Affected packages (2)

Debian/amd64-microcodefrom 0, < 3.20230719.1~deb11u1
Debian/amd64-microcodefrom 0, < 3.20230719.1~deb10u1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2019-9836