Описание
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| linux | fixed | 5.3.9-2 | package | |
| intel-microcode | fixed | 3.20191112.1 | package | |
| xen | fixed | 4.11.3+24-g14b62ab3e5-1 | package | |
| xen | end-of-life | jessie | package |
Примечания
https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort
https://xenbits.xen.org/xsa/advisory-305.html
The 3.20191112.1 release for intel-microcode did contain most updates, additional
update for CFL-S was added in 3.20191113.1.
EPSS
Связанные уязвимости
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
EPSS