Number: AV21-387
Date: 11 August 2021
On 10 August 2021 Intel published Security Advisories to address vulnerabilities in the following products:
• Intel NUC 9 Extreme Laptop Kit LAPQC71A – versions prior to 2.2.0.20
• Intel NUC 9 Extreme Laptop Kit LAPQC71B - versions prior to 2.2.0.20
• Intel NUC 9 Extreme Laptop Kit LAPQC71C - versions prior to 2.2.0.20
• Intel NUC 9 Extreme Laptop Kit LAPQC71D - versions prior to 2.2.0.20
• Intel Ethernet Controllers X722 and 800 series Linux RMDA driver - versions prior to 1.3.19
• Intel Ethernet Controllers 800 series Linux driver - versions prior to 1.4.11
Exploitation of these vulnerabilities could lead to privilege escalation, denial-of-service and information disclosure.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
Intel NUC 9 Extreme Laptop Kit (INTEL-SA-00553)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00553.html
Intel Ethernet Controllers (INTEL-SA-00515)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00515.html
Intel Product Security Center Advisories
https://www.intel.com/content/www/us/en/security-center/default.html
Note to Readers
The Canadian Centre for Cyber Security (Cyber Centre) operates as part of the Communications Security Establishment. We are Canada’s national authority on cyber security and we lead the government’s response to cyber security events. As Canada's national computer security incident response team, the Cyber Centre works in close collaboration with government departments, critical infrastructure , Canadian businesses and international partners to prepare for, respond to, mitigate, and recover from cyber events. We do this by providing authoritative advice and support, and coordinating information sharing and incident response. The Cyber Centre is outward-facing, welcoming partnerships that help build a stronger, more resilient cyber space in Canada.