CVE-2006-1056
5.4 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
41.1%
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys. NOTE: this is the documented behavior of AMD64 processors, but it is inconsistent with Intel processors in a security-relevant fashion that was not addressed by the kernels.
References
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:14.fpu.asc
kb.vmware.com/kb/2533126
kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9
lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html
lwn.net/Alerts/180820/
marc.info/?l=linux-kernel&m=114548768214478&w=2
secunia.com/advisories/19715
secunia.com/advisories/19724
secunia.com/advisories/19735
secunia.com/advisories/20398
secunia.com/advisories/20671
secunia.com/advisories/20716
secunia.com/advisories/20914
secunia.com/advisories/21035
secunia.com/advisories/21136
secunia.com/advisories/21465
secunia.com/advisories/21983
secunia.com/advisories/22417
secunia.com/advisories/22875
secunia.com/advisories/22876
security.freebsd.org/advisories/FreeBSD-SA-06:14-amd.txt
securitytracker.com/id?1015966
support.avaya.com/elmodocs2/security/ASA-2006-180.htm
support.avaya.com/elmodocs2/security/ASA-2006-200.htm
www.debian.org/security/2006/dsa-1097
www.debian.org/security/2006/dsa-1103
www.novell.com/linux/security/advisories/2006-05-31.html
www.osvdb.org/24746
www.osvdb.org/24807
www.redhat.com/support/errata/RHSA-2006-0437.html
www.redhat.com/support/errata/RHSA-2006-0575.html
www.redhat.com/support/errata/RHSA-2006-0579.html
www.securityfocus.com/archive/1/431341
www.securityfocus.com/archive/1/451404/100/0/threaded
www.securityfocus.com/archive/1/451417/100/200/threaded
www.securityfocus.com/archive/1/451419/100/200/threaded
www.securityfocus.com/archive/1/451421/100/0/threaded
www.securityfocus.com/bid/17600
www.ubuntu.com/usn/usn-302-1
www.vmware.com/download/esx/esx-213-200610-patch.html
www.vmware.com/download/esx/esx-254-200610-patch.html
www.vupen.com/english/advisories/2006/1426
www.vupen.com/english/advisories/2006/1475
www.vupen.com/english/advisories/2006/2554
www.vupen.com/english/advisories/2006/4353
www.vupen.com/english/advisories/2006/4502
bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187910
bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187911
exchange.xforce.ibmcloud.com/vulnerabilities/25871
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9995
Related
5.4 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
41.1%