Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00706
HistoryAug 09, 2022 - 12:00 a.m.

Intel® Processors Post Invalidation RSB Advisory

2022-08-0900:00:00
Intel Security Center
www.intel.com
13
JSON

Summary:

A potential security vulnerability in some Intel® Processors may allow information disclosure.** **Intel is releasing prescriptive guidance to address this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2022-26373

Description: Non-transparent sharing of return predictor targets between contexts in some Intel® Processors may allow an authorized user to potentially enable information disclosure via local access.

CVSS Base Score: 5.5 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Root Cause Summary: Hardware structures shared across execution contexts (return predictor targets) can violate the expected architecture isolation between contexts.

Affected Products:

Some Intel® Processors, consult this list of affected products here.

Recommendations:

Intel documents indirect branch prediction target isolation properties as part of the Indirect Branch Restricted Speculation (IBRS) and Indirect Branch Predictor Barrier (IBPB) capabilities. On some processors, two cases have been identified that do not fully isolate targets used for RET prediction. In one case, the address following the most recent CALL before an IBPB may be used under certain circumstances as the predicted target of a RET executed after the barrier. Since an attacker will generally not control the last CALL instruction executed before the IBPB, Intel does not believe that any typical usage of IBPB will require mitigation for this issue.

In the second case, the address following the most recent CALL in guest mode before a VM exit event may be used under certain circumstances as the predicted target of a RET executed in the host. This may be true even when eIBRS is employed. Some VMM software may not be affected, or may already be executing an “RSB stuffing” sequence after VM exit. In other situations, Intel has worked with VMM vendors to create a software mitigation sequence to be used after VM exit where applicable. Intel recommends that affected Intel® Processors that use a Virtual Machine Manager (VMM), should check with their VMM vendor to determine the status of the fix.

Please refer to technical paper here for additional Post-barrier RSB prediction recommendation.

Acknowledgements:

The following issues were found internally by Intel employees. Intel would like to thank Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildan and Ariel Sabba.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

cve 1
ubuntucve 1
debiancve 1
f5 1
veracode 1
prion 1
redhatcve 1
nessus 67
redhat 8
amazon 5
ibm 2
suse 6
vmware 3
openvas 43
osv 25
ubuntu 16
mageia 2
oraclelinux 3
photon 3
debian 3
rocky 2
almalinux 4
cve
cve
CVE-2022-26373
2022-08-18 20:15:00
ubuntucve
ubuntucve
CVE-2022-26373
2022-08-18 00:00:00
debiancve
debiancve
CVE-2022-26373
2022-08-18 20:15:00
f5
f5
K52259753 : Intel Processor vulnerability CVE-2022-26373
2022-11-07 00:00:00
veracode
veracode
Information Disclosure
2022-12-12 00:46:56
prion
prion
Information disclosure
2022-08-18 20:15:00
redhatcve
redhatcve
CVE-2022-26373
2022-08-09 18:37:41
nessus
nessus
RHEL 8 : kernel (RHSA-2023:0440)
2023-01-24 00:00:00
Amazon Linux 2022 : (ALAS2022-2022-127)
2022-09-06 00:00:00
VMware ESXi 6.5 / 6.7 / 7.0 Multiple Vulnerabilities (VMSA-2022-0020)
2024-03-22 00:00:00
redhat
redhat
(RHSA-2023:0440) Important: kernel security and bug fix update
2023-01-24 14:01:08
(RHSA-2022:7337) Important: kernel security and bug fix update
2022-11-02 16:03:50
(RHSA-2022:7338) Important: kernel-rt security and bug fix update
2022-11-02 16:04:02
amazon
amazon
Important: kernel
2022-12-01 20:31:00
Important: kernel
2022-12-01 20:31:00
Important: kernel
2022-09-01 21:09:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities identified in VMWare ESXi shipped with IBM Cloud Pak System
2023-03-31 14:38:04
Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
2023-03-29 18:49:02
suse
suse
Security update for the Linux Kernel (important)
2022-08-12 00:00:00
Security update for the Linux Kernel (important)
2022-09-14 00:00:00
Security update for the Linux Kernel (important)
2022-09-27 00:00:00
vmware
vmware
VMware ESXi addresses Return-Stack-Buffer-Underflow and Branch Type Confusion vulnerabilities
2022-07-12 00:00:00
VMware ESXi addresses Return-Stack-Buffer-Underflow and Branch Type Confusion vulnerabilities
2022-07-12 00:00:00
VMware ESXi addresses Return-Stack-Buffer-Underflow and Branch Type Confusion vulnerabilities
2022-07-12 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5667-1)
2022-10-11 00:00:00
Ubuntu: Security Advisory (USN-5703-1)
2022-10-27 00:00:00
Mageia: Security Advisory (MGASA-2022-0305)
2022-08-26 00:00:00
osv
osv
linux-intel-iotg vulnerabilities
2022-10-26 21:26:29
linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-gcp, linux-gke, linux-gkeop, linux-hwe-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-oracle, linux-raspi vulnerabilities
2022-10-10 20:35:30
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities
2023-07-12 17:24:35
ubuntu
ubuntu
Linux kernel vulnerabilities
2022-10-10 00:00:00
Linux kernel (Intel IoTG) vulnerabilities
2022-10-26 00:00:00
Linux kernel vulnerabilities
2023-07-12 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2022-08-26 00:21:07
Updated kernel-linus packages fix security vulnerabilities
2022-08-26 00:21:07
oraclelinux
oraclelinux
kernel security and bug fix update
2022-11-03 00:00:00
kernel security, bug fix, and enhancement update
2022-11-15 00:00:00
kernel security, bug fix, and enhancement update
2022-11-22 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0248
2022-09-20 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0446
2022-09-07 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0248
2022-09-20 00:00:00
debian
debian
[SECURITY] [DLA 3102-1] linux-5.10 new package
2022-09-11 19:35:03
[SECURITY] [DSA 5207-1] linux security update
2022-08-15 19:52:20
[SECURITY] [DLA 3131-1] linux security update
2022-10-02 16:44:48
rocky
rocky
kernel-rt security and bug fix update
2022-11-08 06:19:55
kernel security, bug fix, and enhancement update
2022-11-08 06:26:19
almalinux
almalinux
Moderate: kernel-rt security and bug fix update
2022-11-08 00:00:00
Moderate: kernel security, bug fix, and enhancement update
2022-11-08 00:00:00
Moderate: kernel-rt security and bug fix update
2022-11-15 00:00:00
JSON
Related for INTEL:INTEL-SA-00706
cve1ubuntucve1debiancve1f51veracode1prion1redhatcve1nessus67redhat8amazon5ibm2suse6vmware3openvas43osv25ubuntu16mageia2oraclelinux3photon3debian3rocky2almalinux4