Alysa Milburn, Jason Brandt, Avishai Redelman and Nir Lavi
discovered that for some Intel processors optimization removal or
modification of security-critical code may result in information
disclosure to local users.
For the oldstable distribution (buster), these problems have been fixed
in version 3.20220510.1~deb10u1.
For the stable distribution (bullseye), these problems have been fixed in version 3.20220510.1~deb11u1.
We recommend that you upgrade your intel-microcode packages.