CVE-2023-31356

Опубликовано: 13 авг. 2024

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 4.4

Описание

Incomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting in a loss of data integrity.

Релиз	Статус	Примечание
devel	not-affected	3.20240820.1ubuntu1
esm-infra-legacy/trusty	not-affected	AMD SEV firmware not present
esm-infra/bionic	not-affected	AMD SEV firmware not present
esm-infra/focal	not-affected	AMD SEV firmware not present
esm-infra/xenial	not-affected	AMD SEV firmware not present
focal	not-affected	AMD SEV firmware not present
jammy	not-affected	AMD SEV firmware not present
noble	released	3.20250311.1ubuntu0.24.04.1
oracular	released	3.20250311.1ubuntu0.24.10.1
plucky	not-affected	3.20240820.1ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 13%

0.00044

Низкий

4.4 Medium

CVSS3

Связанные уязвимости

CVE-2023-31356

CVSS3: 4.4

redhat

10 месяцев назад

Incomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting in a loss of data integrity.

CVE-2023-31356

CVSS3: 4.4

nvd

10 месяцев назад

Incomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting in a loss of data integrity.

CVE-2023-31356

CVSS3: 4.4

debian

10 месяцев назад

Incomplete system memory cleanup in SEV firmware could allow a privile ...

GHSA-3w7r-v4fr-r43w

CVSS3: 4.4

github

10 месяцев назад

Incomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting in a loss of data integrity.

ELSA-2024-12797

oracle-oval

8 месяцев назад

ELSA-2024-12797: linux-firmware security update (MODERATE)

EPSS

Процентиль: 13%

0.00044

Низкий

4.4 Medium

CVSS3

CVE-2023-31356

Описание

Пакет amd64-microcode

Ссылки на источники

Связанные уязвимости