EPSS
Percentile
12.6%
kernel is vulnerable to information disclosure. The prctl() function can be used to enable indirect branch speculation even after it has been disabled. This same call will incorrectly report it being ‘force disabled’ when it is not.
prctl()
access.redhat.com/errata/RHSA-2020:3016
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10768
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=4d8df8cbb9156b0a0ab3f802b80cb5db57acc0bf