CVE-2020-0543

Опубликовано: 15 июн. 2020

Источник: debian

EPSS Низкий

Описание

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
intel-microcode	fixed	3.20200609.1		package
linux	fixed	5.6.14-2		package

Примечания

https://www.vusec.net/projects/crosstalk/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html
https://software.intel.com/security-software-guidance/insights/deep-dive-special-register-buffer-data-sampling

EPSS

Процентиль: 66%

0.00533

Низкий

Связанные уязвимости

CVE-2020-0543

CVSS3: 5.5

ubuntu

около 5 лет назад

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2020-0543

CVSS3: 6.5

redhat

около 5 лет назад

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2020-0543

CVSS3: 5.5

nvd

около 5 лет назад

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

openSUSE-SU-2020:0818-1

suse-cvrf

около 5 лет назад

Security update for xen

SUSE-SU-2021:1497-1

suse-cvrf

около 4 лет назад

Security update for sca-patterns-sle11

EPSS

Процентиль: 66%

0.00533

Низкий