Описание
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db.
Ссылки
- ExploitMailing ListThird Party Advisory
- PatchThird Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
- PatchThird Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
EPSS
4.7 Medium
CVSS3
4.7 Medium
CVSS2
Дефекты
Связанные уязвимости
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db.
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db.
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch ...
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db.
EPSS
4.7 Medium
CVSS3
4.7 Medium
CVSS2