CVE-2018-15572

Опубликовано: 20 авг. 2018

Источник: nvd

CVSS3: 6.5

CVSS2: 2.1

EPSS Низкий

Описание

The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks.

Ссылки

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fdf82a7856b32d905c39afc85e34364491e46346
Mitigation
Patch
Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.18.1
Mitigation
Patch
Vendor Advisory
https://github.com/torvalds/linux/commit/fdf82a7856b32d905c39afc85e34364491e46346
Mitigation
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html
Mailing List
Third Party Advisory
https://usn.ubuntu.com/3775-1/
Third Party Advisory
https://usn.ubuntu.com/3775-2/
Third Party Advisory
https://usn.ubuntu.com/3776-1/
Third Party Advisory
https://usn.ubuntu.com/3776-2/
Third Party Advisory
https://usn.ubuntu.com/3777-1/
Third Party Advisory
https://usn.ubuntu.com/3777-2/
Third Party Advisory
https://usn.ubuntu.com/3777-3/
Third Party Advisory
https://www.debian.org/security/2018/dsa-4308
Third Party Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fdf82a7856b32d905c39afc85e34364491e46346
Mitigation
Patch
Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.18.1
Mitigation
Patch
Vendor Advisory
https://github.com/torvalds/linux/commit/fdf82a7856b32d905c39afc85e34364491e46346
Mitigation
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html
Mailing List
Third Party Advisory
https://usn.ubuntu.com/3775-1/
Third Party Advisory
https://usn.ubuntu.com/3775-2/
Third Party Advisory
https://usn.ubuntu.com/3776-1/
Third Party Advisory
https://usn.ubuntu.com/3776-2/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Конфигурация 3

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 4.18.1 (исключая)

EPSS

Процентиль: 14%

0.00045

Низкий

6.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2018-15572

CVSS3: 6.5

ubuntu

почти 7 лет назад

CVE-2018-15572

CVSS3: 5.6

redhat

почти 7 лет назад

CVE-2018-15572

CVSS3: 6.5

debian

почти 7 лет назад

The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs. ...

GHSA-fr39-wf38-f5w3

CVSS3: 6.5

github

около 3 лет назад

BDU:2021-01418

CVSS3: 6.5

fstec

почти 7 лет назад

Уязвимость функции spectre_v2_select_mitigation ядра операционной системы Linux, связанная с чтением за границами буфера, позволяющая нарушителю получить доступ к конфиденциальным данным

EPSS

Процентиль: 14%

0.00045

Низкий

6.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

NVD-CWE-noinfo