CVE-2020-10767
Description
A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.042
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.26.1.noarch.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.26.1.noarch.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.26.1.noarch.rpm | Linux |
| SUSE-SU-2020:1693-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.26.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.19.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.19.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.19.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.19.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.19.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.19.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.19.1.noarch.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.19.1.noarch.rpm | Linux |
| SUSE-SU-2020:1699-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.19.1.x86_64.rpm | Linux |
| Linux kernel (USN-4427-1) linux-image-aws_4.4.0.1111.116_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-kvm_4.4.0.1077.75_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-generic_4.4.0.186.192_i386.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-generic_4.4.0.186.192_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-virtual_4.4.0.186.192_i386.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-virtual_4.4.0.186.192_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-lowlatency_4.4.0.186.192_i386.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-lowlatency_4.4.0.186.192_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-4.4.0-1077-kvm_4.4.0-1077.84_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-4.4.0-1111-aws_4.4.0-1111.123_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-4.4.0-186-generic_4.4.0-186.216_i386.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-4.4.0-186-generic_4.4.0-186.216_amd64.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-4.4.0-186-lowlatency_4.4.0-186.216_i386.deb | Linux |
| Linux kernel (USN-4427-1) linux-image-4.4.0-186-lowlatency_4.4.0-186.216_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-4439-1) linux-image-gke-5.0_5.0.0.1045.30_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-4439-1) linux-image-oem-osp1_5.0.0.1065.63_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-4439-1) linux-image-5.0.0-1045-gke_5.0.0-1045.46_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-4439-1) linux-image-5.0.0-1065-oem-osp1_5.0.0-1065.70_amd64.deb | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update bpftool-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-abi-whitelists-4.18.0-193.13.2.el8_2.noarch.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-core-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-debug-devel-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-devel-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-193.13.2.el8_2.noarch.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-headers-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update perf-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3010) kernel security, bug fix, and enhancement update python3-perf-4.18.0-193.13.2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3073) kpatch-patch security update kpatch-patch-4_18_0-193-1-5.el8.x86_64.rpm | Linux |
| (RHSA-2020:3073) kpatch-patch security update kpatch-patch-4_18_0-193-debugsource-1-5.el8.x86_64.rpm | Linux |
| (RHSA-2020:3073) kpatch-patch security update kpatch-patch-4_18_0-193_1_2-1-3.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3073) kpatch-patch security update kpatch-patch-4_18_0-193_1_2-debugsource-1-3.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3073) kpatch-patch security update kpatch-patch-4_18_0-193_6_3-1-2.el8_2.x86_64.rpm | Linux |
| (RHSA-2020:3073) kpatch-patch security update kpatch-patch-4_18_0-193_6_3-debugsource-1-2.el8_2.x86_64.rpm | Linux |
| Linux kernel (USN-4483-1) linux-image-aws_5.4.0.1022.23_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-gcp_5.4.0.1022.9_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-gcp_5.4.0.1022.20_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-gke_5.4.0.1022.20_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-kvm_5.4.0.1021.20_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-oem_5.4.0.45.49_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-azure_5.4.0.1023.7_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-azure_5.4.0.1023.22_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-oracle_5.4.0.1022.7_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-oracle_5.4.0.1022.20_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-generic_5.4.0.45.49_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-gke-5.4_5.4.0.1022.9_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-virtual_5.4.0.45.49_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-aws-edge_5.4.0.1022.8_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-oem-osp1_5.4.0.45.49_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-lowlatency_5.4.0.45.49_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1022-aws_5.4.0-1022.22_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1022-aws_5.4.0-1022.22~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1022-gcp_5.4.0-1022.22_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1022-gcp_5.4.0-1022.22~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1023-azure_5.4.0-1023.23_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1023-azure_5.4.0-1023.23~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-45-generic_5.4.0-45.49_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1022-oracle_5.4.0-1022.22_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-1022-oracle_5.4.0-1022.22~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4483-1) linux-image-5.4.0-45-lowlatency_5.4.0-45.49_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-gcp_4.15.0.1081.83_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-gke_4.15.0.1067.71_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-gke_4.15.0.1081.83_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-kvm_4.15.0.1072.68_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-oem_4.15.0.1094.98_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-azure_4.15.0.1093.88_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-oracle_4.15.0.1051.42_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-aws-hwe_4.15.0.1080.77_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-generic_4.15.0.115.103_i386.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-generic_4.15.0.115.103_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-virtual_4.15.0.115.103_i386.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-virtual_4.15.0.115.103_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-gke-4.15_4.15.0.1067.71_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-azure-edge_4.15.0.1093.88_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-lowlatency_4.15.0.115.103_i386.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-lowlatency_4.15.0.115.103_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-aws-lts-18.04_4.15.0.1080.82_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-gcp-lts-18.04_4.15.0.1081.99_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1067-gke_4.15.0-1067.70_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1072-kvm_4.15.0-1072.73_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1080-aws_4.15.0-1080.84_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1080-aws_4.15.0-1080.84~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1081-gcp_4.15.0-1081.92_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1081-gcp_4.15.0-1081.92~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1094-oem_4.15.0-1094.104_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-azure-lts-18.04_4.15.0.1093.67_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-oracle-lts-18.04_4.15.0.1051.62_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1093-azure_4.15.0-1093.103_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1093-azure_4.15.0-1093.103~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1051-oracle_4.15.0-1051.55_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-1051-oracle_4.15.0-1051.55~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-115-generic_4.15.0-115.116_i386.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-115-generic_4.15.0-115.116_amd64.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-115-lowlatency_4.15.0-115.116_i386.deb | Linux |
| Linux kernel (USN-4485-1) linux-image-4.15.0-115-lowlatency_4.15.0-115.116_amd64.deb | Linux |
| Kernel-uek update (ELSA-2020-5914) kernel-uek-5.4.17-2036.100.6.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2020-5914) kernel-uek-debug-5.4.17-2036.100.6.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2020-5914) kernel-uek-debug-devel-5.4.17-2036.100.6.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2020-5914) kernel-uek-devel-5.4.17-2036.100.6.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2020-5914) kernel-uek-doc-5.4.17-2036.100.6.1.el8uek.noarch.rpm | Linux |
| kernel Security Update (ALAS-2020-1465) kernel-livepatch-4.14.186-146.268-1.0-0.amzn2.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234