https://xenbits.xen.org/xsa/advisory-297.html for details abo...">Load Value Injection (LVI) speculative side channel - vulnerability database | Vulners.comhttps://xenbits.xen.org/xsa/advisory-297.html for details abo...">https://xenbits.xen.org/xsa/advisory-297.html for details abo...">https://xenbits.xen.org/xsa/advisory-297.html for details abo...">
Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
xenXen ProjectXSA-315
HistoryMar 10, 2020 - 5:02 p.m.

Load Value Injection (LVI) speculative side channel

2020-03-1017:02:00
Xen Project
xenbits.xen.org
40

0.0004 Low

EPSS

Percentile

12.2%

JSON

ISSUE DESCRIPTION

This is very closely related to the Microarchitectural Data Sampling vulnerabilities from May 2019.
Please see <a href=โ€œhttps://xenbits.xen.org/xsa/advisory-297.htmlโ€>https://xenbits.xen.org/xsa/advisory-297.html</a> for details about MDS.
A new way of using the micro-architectural details behind MDS has been identified. Instead of simply trying to sample data from a different privilege context, an attacker can arrange for poisoned data to be consumed (speculatively) in a victim context.
This expands the range of tools by which an attacker can manipulate speculation in the victim context to leak data via a side channel.
For more details, see: <a href=โ€œhttps://software.intel.com/security-software-guidance/insights/deep-dive-load-value-injectionโ€>https://software.intel.com/security-software-guidance/insights/deep-dive-load-value-injection</a>

IMPACT

An attacker, which could include a malicious untrusted user process on a trusted guest, or an untrusted guest, can potentially cause a victim context (process, or guest, or guest kernel, or hypervisor) to leak secrets available to it.

VULNERABLE SYSTEMS

Systems running all versions of Xen are affected.
Only x86 processors are vulnerable. ARM processors are not believed to be vulnerable.
Only Intel based processors are potentially affected. Processors from other manufacturers (e.g. AMD) are not believed to be vulnerable.
Please consult the Intel Security Advisory for details on the affected processors.

Related

nessus 4
cvelist 1
thn 1
cve 1
ubuntucve 1
openvas 4
redhatcve 1
intel 1
prion 1
lenovo 2
f5 1
threatpost 2
nessus
nessus
EulerOS Virtualization 2.9.1 : binutils (EulerOS-SA-2021-1732)
2021-04-15 00:00:00
EulerOS 2.0 SP9 : binutils (EulerOS-SA-2021-1919)
2021-06-03 00:00:00
EulerOS 2.0 SP9 : binutils (EulerOS-SA-2021-1940)
2021-06-03 00:00:00
cvelist
cvelist
CVE-2020-0551
2020-03-12 21:04:48
thn
thn
LVI Attacks: New Intel CPU Vulnerability Puts Data Centers At Risk
2020-03-10 16:30:00
cve
cve
CVE-2020-0551
2020-03-12 22:15:00
ubuntucve
ubuntucve
CVE-2020-0551
2020-03-10 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2021-1732)
2021-04-13 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2021-1760)
2021-04-13 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2021-1919)
2021-06-07 00:00:00
redhatcve
redhatcve
CVE-2020-0551
2020-04-02 20:05:50
intel
intel
Intelยฎ Processors Load Value Injection Advisory
2021-05-11 00:00:00
prion
prion
Design/Logic Flaw
2020-03-12 22:15:00
lenovo
lenovo
Intel SGX and Processor Side Channel Data Leakage Vulnerabilities - Lenovo Support NL
2020-03-07 00:32:10
Intel SGX and Processor Side Channel Data Leakage Vulnerabilities - Lenovo Support US
2020-03-07 00:32:10
f5
f5
K94552980 : Intel product vulnerabilities CVE-2020-0550 and CVE-2020-0551
2020-03-27 00:00:00
threatpost
threatpost
High-Severity Flaws Plague Intel Graphics Drivers
2020-03-10 18:08:36
High-Severity Flaws Plague Intel Graphics Drivers
2020-03-10 18:08:36

0.0004 Low

EPSS

Percentile

12.2%

JSON
Related for XSA-315
nessus4cvelist1thn1cve1ubuntucve1openvas4redhatcve1intel1prion1lenovo2f51threatpost2