Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2023-20593

Опубликовано: 25 июл. 2023
Источник: redhat
CVSS3: 6.5

Описание

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

A flaw was found in hw, in “Zen 2” CPUs. This issue may allow an attacker to access sensitive information under specific microarchitectural circumstances.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 6microcode_ctlNot affected
Red Hat Enterprise Linux 7kernel-rtFixedRHSA-2023:482129.08.2023
Red Hat Enterprise Linux 7kernelFixedRHSA-2023:481929.08.2023
Red Hat Enterprise Linux 7linux-firmwareFixedRHSA-2023:751327.11.2023
Red Hat Enterprise Linux 7.4 Advanced Update SupportkernelFixedRHSA-2023:469922.08.2023
Red Hat Enterprise Linux 7.6 Advanced Update Support(Disable again in 2026 - SPRHEL-7118)kernelFixedRHSA-2023:469622.08.2023
Red Hat Enterprise Linux 7.6 Advanced Update Support(Disable again in 2026 - SPRHEL-7118)linux-firmwareFixedRHSA-2023:778213.12.2023
Red Hat Enterprise Linux 7.7 Advanced Update SupportkernelFixedRHSA-2023:541903.10.2023
Red Hat Enterprise Linux 7.7 Advanced Update Supportlinux-firmwareFixedRHSA-2023:724415.11.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-1239
https://bugzilla.redhat.com/show_bug.cgi?id=2217845hw: amd: Cross-Process Information Leak

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2023-20593

CVSS3: 5.5
ubuntu
почти 2 года назад

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

nvd логотип

CVE-2023-20593

CVSS3: 5.5
nvd
почти 2 года назад

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

debian логотип

CVE-2023-20593

CVSS3: 5.5
debian
почти 2 года назад

An issue in \u201cZen 2\u201d CPUs, under specific microarchitectural ...

suse-cvrf логотип

SUSE-SU-2024:0885-1

suse-cvrf
больше 1 года назад

Security update for spectre-meltdown-checker

suse-cvrf логотип

SUSE-SU-2024:0884-1

suse-cvrf
больше 1 года назад

Security update for spectre-meltdown-checker

6.5 Medium

CVSS3