CVE-2023-0045

🗓️ 06 Feb 2023 06:56:20Reported by redhat.comType

redhatcve

redhatcve🔗 access.redhat.com👁 110 Views

Flaw in Linux kernel allows Spectre-BTI attack, vulnerability when IBPB is not issued during syscal

Reporter	Title	Published	Views	Family All 540
GithubExploit	Exploit for Externally Controlled Reference to a Resource in Another Sphere in Linux Linux_Kernel	7 Feb 202319:12	–	githubexploit
GithubExploit	Exploit for Externally Controlled Reference to a Resource in Another Sphere in Linux Linux_Kernel	4 Feb 202322:42	–	githubexploit
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2-2023-1932 (ALAS-2023-1932)	8 Feb 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2023-026 (ALASKERNEL-5.10-2023-026)	8 Feb 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2023-013 (ALASKERNEL-5.15-2023-013)	8 Feb 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2023-042 (ALASKERNEL-5.4-2023-042)	23 Feb 202300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : kernel (ALAS-2023-1706)	22 Mar 202300:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0079: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2023:0079)	14 May 202500:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0136: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2023:0136)	14 May 202500:00	–	nessus
Tenable Nessus	Debian dla-3403 : hyperv-daemons - security update	17 May 202300:00	–	nessus

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-0045
git	www.git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/
github	www.github.com/es0j/CVE-2023-0045
openwall	www.openwall.com/lists/oss-security/2023/02/03/1
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

23 Sep 2024 20:20Current

7.1High risk

Vulners AI Score7.1

CVSS 3.14.7

EPSS0.02399

linux kernel spectre-bti attack ibpb vulnerability mitigation user-mode reschedule