Описание
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| intel-microcode | fixed | 3.20220510.1 | package | |
| intel-microcode | no-dsa | bullseye | package |
Примечания
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html
https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/technical-documentation/processor-mmio-stale-data-vulnerabilities.html#SRBDS-Update
https://xenbits.xen.org/xsa/advisory-404.html
EPSS
Связанные уязвимости
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Intel: CVE-2022-21127 Special Register Buffer Data Sampling Update (SRBDS Update)
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
EPSS