Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-20593

Опубликовано: 24 июл. 2023
Источник: debian
EPSS Низкий

Описание

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
linuxfixed6.4.4-2package
amd64-microcodefixed3.20230719.1package

Примечания

  • https://www.openwall.com/lists/oss-security/2023/07/24/1

  • https://lock.cmpxchg8b.com/zenbleed.html

  • https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7008.html

  • https://github.com/google/security-research/security/advisories/GHSA-v6wh-rxpg-cmm8

  • https://xenbits.xen.org/xsa/advisory-433.html

  • Technically not an issue in src:linux but track as well the kernel side mitigation

  • under the CVE entry.

  • 3.20230719.1 ships the first batch of fixes, only for 2nd gen Epyc CPUs, further

  • CPUs to follow in later releases

EPSS

Процентиль: 91%
0.06482
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-20593

CVSS3: 5.5
ubuntu
почти 2 года назад

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

redhat логотип

CVE-2023-20593

CVSS3: 6.5
redhat
почти 2 года назад

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

nvd логотип

CVE-2023-20593

CVSS3: 5.5
nvd
почти 2 года назад

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

suse-cvrf логотип

SUSE-SU-2024:0885-1

suse-cvrf
больше 1 года назад

Security update for spectre-meltdown-checker

suse-cvrf логотип

SUSE-SU-2024:0884-1

suse-cvrf
больше 1 года назад

Security update for spectre-meltdown-checker

EPSS

Процентиль: 91%
0.06482
Низкий