Описание
A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | needed | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.5.18-1ubuntu1.1 |
| cosmic | not-affected | 3.6.4-2ubuntu1 |
| devel | not-affected | 3.6.5-2ubuntu1 |
| disco | not-affected | 3.6.5-2ubuntu1 |
| eoan | not-affected | 3.6.5-2ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| esm-infra/bionic | released | 3.5.18-1ubuntu1.1 |
| esm-infra/focal | not-affected | 3.6.5-2ubuntu1 |
| esm-infra/xenial | released | 3.4.10-4ubuntu1.5 |
| fips-preview/jammy | not-affected | 3.6.5-2ubuntu1 |
Показывать по
1.9 Low
CVSS2
5.6 Medium
CVSS3
Связанные уязвимости
A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets.
A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets.
A cache-based side channel in GnuTLS implementation that leads to plai ...
A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets.
1.9 Low
CVSS2
5.6 Medium
CVSS3