396 matches found
SUSE-SU-2023:3494-1 Security update for xen
This update for xen fixes the following issues: - CVE-2023-20569: Fixed x86/AMD Speculative Return Stack Overflow XSA-434 bsc1214082. - CVE-2022-40982: Fixed x86/Intel Gather Data Sampling XSA-435 bsc1214083. - CVE-2023-20593: Fixed x86/AMD Zenbleed XSA-433 bsc1213616...
SUSE-SU-2023:3446-1 Security update for xen
This update for xen fixes the following issues: - CVE-2023-20569: Fixed side channel attack Inception or RAS Poisoning. bsc1214082, XSA-434 - CVE-2022-40982: Fixed transient execution attack called 'Gather Data Sampling'. bsc1214083, XSA-435 - CVE-2023-20593: Fixed a ZenBleed issue in 'Zen 2' CPU...
Debian: Security Advisory (DSA-5475-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3524-1] linux security update
Debian LTS Advisory DLA-3524-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings August 10, 2023 https://wiki.debian.org/LTS Package : linux Version : 4.19.289-2 CVE ID : CVE-2022-40982 Daniel Moghimi discovered Gather Data Sampling GDS, a hardware vulnerability for...
K80159635: Microarchitectural Fill Buffer Data Sampling (MFBDS) CVE-2018-12130
Security Advisory Description Microarchitectural Fill Buffer Data Sampling MFBDS: Fill buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. CVE-2018-12130 Impact MDS...
K97035296: Microarchitectural Load Port Data Sampling - Information Leak (MLPDS) CVE-2018-12127
Security Advisory Description Microarchitectural Load Port Data Sampling MLPDS: Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. CVE-2018-12127 Impact MDS...
K41283800: INTEL-SA-00233 Microarchitectural Data Sampling Advisory
Security Advisory Description Multiple vulnerabilities in Intel processors have been mentioned in several sources and are referred to collectively as INTEL-SA-00233 Microarchitectural Data Sampling Advisory. F5 is aware of these vulnerabilities and is investigating as information becomes availabl...
K34303485: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) CVE-2019-11091
Security Advisory Description Microarchitectural Data Sampling Uncacheable Memory MDSUM: Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. CVE-2019-11091...
K52370164: Microarchitectural Store Buffer Data Sampling (MSBDS) CVE-2018-12126
Security Advisory Description Microarchitectural Store Buffer Data Sampling MSBDS: Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.CVE-2018-12126 Impact MDS...
SUSE CVE-2018-12127
Microarchitectural Load Port Data Sampling MLPDS: Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here:...
SUSE CVE-2019-11091
Microarchitectural Data Sampling Uncacheable Memory MDSUM: Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here:...
Intel: CVE-2022-21125 Shared Buffers Data Sampling (SBDS)
...
Intel: CVE-2022-21127 Special Register Buffer Data Sampling Update (SRBDS Update)
...
Mageia: Security Advisory (MGASA-2019-0179)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2019-0185)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2019-0174)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2019-0173)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
hw: L1D Cache Eviction Sampling
A microarchitectural timing flaw was found on some Intel processors. A corner case exists where data in-flight during the eviction process can end up in the “fill buffers” and not properly cleared by the MDS mitigations. The fill buffer contents which were expected to be blank can be inferred usi...
hw: L1D Cache Eviction Sampling
A microarchitectural timing flaw was found on some Intel processors. A corner case exists where data in-flight during the eviction process can end up in the “fill buffers” and not properly cleared by the MDS mitigations. The fill buffer contents which were expected to be blank can be inferred usi...
hw: Special Register Buffer Data Sampling (SRBDS)
A new domain bypass transient execution attack known as Special Register Buffer Data Sampling SRBDS has been found. This flaw allows data values from special internal registers to be leaked by an attacker able to execute code on any core of the CPU. An unprivileged, local attacker can use this fl...