Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:21944
HistoryNov 13, 2019 - 12:20 a.m.

Information Disclosure

2019-11-1300:20:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
21

EPSS

0.001

Percentile

23.6%

kernel is vulnerable to information disclosure. Due to the way Intel CPUs handle speculative execution of instructions when the TSX Asynchronous Abort (TAA) error occur, a local authenticated attacker with the ability to monitor execution times could infer the TSX memory state by comparing abort execution times.

References