Intel issues advisories for 90 security vulnerabilities — includes critical level 10 for AI tools

Dallin Grimm

May 15, 2024 at 4:37 PM·2 min read

In keeping with industry tradition, Intel released 41 security advisories, for over 90 vulnerabilities, yesterday on Patch Tuesday. The advisories covered flaws across Intel's world of products, primarily on the software side — including one maximum-level vulnerability in Intel Neural Compressor.

The "critical" severity vulnerability found in Neural Compressor received a CVSS score of 10.0, which is the maximum level of severity that can be awarded to a security risk. Intel's Neural Compressor is open to an escalation of privilege attack via remote access on all updates before the current release, which were rushed out for Patch Tuesday. Neural Compressor is not on most computers, but those with AI-engineering workflows should check their computers for the software. Neural Compressor is a tool for optimizing AI language models and decreasing size and increasing the speed of LLMs.

The remaining exploits have severity levels that range from medium to high. High-level exploits are found in the UEFI firmware of server products, Arc & Iris Xe Graphics software, and a random collection of Intel software products. The high-level flaws contain risks of privilege escalation attacks, DoS attacks, or information disclosure.

Medium-severity vulnerabilities were found in Meteor Lake Core Ultra processors and a large range of Intel's software line, including the Processor Diagnostic Tool, Graphics Performance Analyzers, and the Extreme Tuning Utility. Users who are concerned can rest assured that security updates have been rolled out for all vulnerabilities — but any listed software should be double-checked to ensure it is running the latest update. For the full list of vulnerabilities released this Patch Tuesday, take a look at Intel's Security Center.

Patch Tuesday is an industry-wide tradition in which major software and hardware manufacturers release the month's security updates on the second Tuesday of each month. This Patch Tuesday was particularly busy for Intel, which typically enjoys a fairly tame Patch Tuesday. We haven't reported on an Intel security fix of such high severity since Downfall in 2023.

Intel has been fighting for market dominance recently, as AMD continues its rise in market share as generations progress and AMD continues to beat Intel in performance.

Yahoo Sports
Braves, down Ronald Acuña Jr., hope May’s malaise doesn’t lead to June swoon — 'We’re too talented'
Even before his injury, Acuña was one of many Braves struggling at the plate, and the team now faces a roster-wide power outage.
Yahoo Life Shopping
8 most affordable hearing aids of 2024, according to experts
Listen up! Brands like Zepp, Jabra, Signia and Horizon are delivering some of the best inexpensive hearing aids on the market.
Yahoo Sports
Birmingham-Southern rallies late, but loses DIII College World Series opener to Salve Regina
Birmingham-Southern fell behind 7–0 in its Division III College World Series matchup with Salve Regina and couldn't overcome the deficit in a 7–5 defeat.
TechCrunch
Google admits its AI Overviews need work, but we're all helping it beta test
Google is embarrassed about its AI Overviews, too. Google -- a company whose name is synonymous with searching the web -- whose brand focuses on "organizing the world's information" and putting it at user's fingertips -- actually wrote in a blog post that "some odd, inaccurate or unhelpful AI Overviews certainly did show up." The admission of failure, penned by Google VP and Head of Search Liz Reid, seems a testimony as to how the drive to mash AI technology into everything has now somehow made Google Search worse.
Yahoo News
What went wrong with Google's new AI search feature — and what the company is doing to try to fix it
Google's new AI search feature was bound to have its issues. Now, after weeks of jokes and memes on social media, the tech giant is responding.
Yahoo Sports
Orioles' John Means, Tyler Wells to both undergo season-ending surgery for second torn UCLs
Means, a former All-Star, is a free agent after this season.
TechCrunch
General Catalyst-backed Jasper Health lays off staff
Jasper Health, a cancer care platform startup, laid off a substantial part of its workforce, TechCrunch has learned. Engineering and product design were among the departments impacted by the cuts, according to posts on LinkedIn from impacted employees. TechCrunch was unable to independently verify the exact number of people who were cut, but an industry source who knew impacted people believes it was approximately half of Jasper Health's small team.
TechCrunch
Live Nation confirms Ticketmaster was hacked, says personal information stolen in data breach
Entertainment giant Live Nation has confirmed its ticketing subsidiary Ticketmaster has been hacked. Live Nation confirmed the data breach in a filing with government regulators late on Friday after the markets closed. In its statement, Live Nation said the breach occurred on May 20, and that a cybercriminal "offered what it alleged to be Company user data for sale via the dark web."
Yahoo Sports
Mike Tyson-Jake Paul boxing match postponed after Tyson's recent medical scare
The date for Tyson-Paul will be announced by next Friday.
Yahoo Life Shopping
This flowy nightgown is 'like wearing nothing at all' — and it's just $15
'Like wearing nothing at all': No wonder the easy-breezy number has a 3,400-person fan club.
Yahoo Sports
Report: Pelicans to defer Lakers' first-round pick in Anthony Davis trade until 2025
The New Orleans Pelicans have opted not to take the Los Angeles Lakers' first-round pick in this year's NBA Draft as part of the Anthony Davis trade. The Pelicans will take the Lakers' pick next year.
Autoblog
How to get a car loan
The five steps you need to take in order to finance the purchase of a new car.
Engadget
Meta says the future of Facebook is young adults (again)
Meta is once again telling the world it intends to reorient its platform in order to appeal to younger users.
Engadget
The Tribeca Film Festival will debut a bunch of short films made by AI
The Tribeca Film Festival will debut a bunch of short films made by AI. They are being made using OpenAI’s Sora model.
Yahoo Sports
Luka Doncic shreds the Timberwolves + Mavs/Celtics NBA Finals preview | No Cap Room
Jake Fischer and Dan Devine recap the Western Conference Finals, and discuss the future of the Timberwolves, before previewing the 2024 NBA Finals.
Yahoo Tech
'Made my daily commute safer': This top-selling phone mount is key for road trips, and it's down to $11
This easy-to-use gizmo can be installed in three different spots, and it doesn't slip around, shoppers say.
Yahoo Life Shopping
Amazon Prime Day 2024: Everything we know, including deals you can shop now
Prime Day is confirmed to be kicking off sometime in July. Here's all the info we have, along with super deals you can shop early.
Yahoo Finance
Stock market today: Stocks cap another winning month, S&P 500 logs best May since 2003
Investors waited for the release of the Fed's preferred inflation data, seen as a potential turning point for a market gripped by rate-cut jitters.
Autoblog
How to clean the inside of your windshield
There are a lot of issues you can ignore with your car’s condition and cleanliness, but a dirty windshield isn’t one of them. Here's how to rid your glass of oily residue for a safe view of the road.
Engadget
Twitch removes every member of its Safety Advisory Council
Twitch has terminated the contracts of all its Safety Advisory Council members.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Intel issues advisories for 90 security vulnerabilities — includes critical level 10 for AI tools

Recommended Stories

Braves, down Ronald Acuña Jr., hope May’s malaise doesn’t lead to June swoon — 'We’re too talented'

8 most affordable hearing aids of 2024, according to experts

Birmingham-Southern rallies late, but loses DIII College World Series opener to Salve Regina

Google admits its AI Overviews need work, but we're all helping it beta test

What went wrong with Google's new AI search feature — and what the company is doing to try to fix it

Orioles' John Means, Tyler Wells to both undergo season-ending surgery for second torn UCLs

General Catalyst-backed Jasper Health lays off staff

Live Nation confirms Ticketmaster was hacked, says personal information stolen in data breach

Mike Tyson-Jake Paul boxing match postponed after Tyson's recent medical scare

This flowy nightgown is 'like wearing nothing at all' — and it's just $15

Report: Pelicans to defer Lakers' first-round pick in Anthony Davis trade until 2025

How to get a car loan

Meta says the future of Facebook is young adults (again)

The Tribeca Film Festival will debut a bunch of short films made by AI

Luka Doncic shreds the Timberwolves + Mavs/Celtics NBA Finals preview | No Cap Room

'Made my daily commute safer': This top-selling phone mount is key for road trips, and it's down to $11

Amazon Prime Day 2024: Everything we know, including deals you can shop now

Stock market today: Stocks cap another winning month, S&P 500 logs best May since 2003

How to clean the inside of your windshield

Twitch removes every member of its Safety Advisory Council