Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-3620 (GCVE-0-2018-3620)
Vulnerability from cvelistv5 – Published: 2018-08-14 19:00 – Updated: 2024-09-17 01:01
VLAI
EPSS
Summary
Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.
Severity
No CVSS data available.
CWE
- Information Disclosure
Assigner
References
53 references
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Intel Corporation | Multiple |
Affected:
Multiple
|
Date Public
2018-08-14 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T04:50:29.256Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "VU#982149",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "https://www.kb.cert.org/vuls/id/982149"
},
{
"name": "1041451",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1041451"
},
{
"name": "GLSA-201810-06",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201810-06"
},
{
"name": "USN-3741-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3741-2/"
},
{
"name": "RHSA-2018:2393",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2393"
},
{
"name": "USN-3823-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3823-1/"
},
{
"name": "RHSA-2018:2389",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2389"
},
{
"name": "RHSA-2018:2390",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2390"
},
{
"name": "RHSA-2018:2403",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2403"
},
{
"name": "105080",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/105080"
},
{
"name": "RHSA-2018:2395",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
},
{
"name": "RHSA-2018:2384",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2384"
},
{
"name": "USN-3740-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3740-2/"
},
{
"name": "FreeBSD-SA-18:09",
"tags": [
"vendor-advisory",
"x_refsource_FREEBSD",
"x_transferred"
],
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc"
},
{
"name": "DSA-4274",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2018/dsa-4274"
},
{
"name": "FEDORA-2018-1c80fea1cd",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/"
},
{
"name": "RHSA-2018:2388",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2388"
},
{
"name": "USN-3741-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3741-1/"
},
{
"name": "RHSA-2018:2603",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2603"
},
{
"name": "RHSA-2018:2402",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2402"
},
{
"name": "20180814 CPU Side-Channel Information Disclosure Vulnerabilities: August 2018",
"tags": [
"vendor-advisory",
"x_refsource_CISCO",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel"
},
{
"name": "FEDORA-2018-f8cba144ae",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/"
},
{
"name": "USN-3742-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3742-2/"
},
{
"name": "RHSA-2018:2404",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2404"
},
{
"name": "USN-3740-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3740-1/"
},
{
"name": "RHSA-2018:2391",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2391"
},
{
"name": "RHSA-2018:2396",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2396"
},
{
"name": "DSA-4279",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2018/dsa-4279"
},
{
"name": "RHSA-2018:2392",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2392"
},
{
"name": "[debian-lts-announce] 20180828 [SECURITY] [DLA 1481-1] linux-4.9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html"
},
{
"name": "USN-3742-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3742-1/"
},
{
"name": "RHSA-2018:2602",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2602"
},
{
"name": "[debian-lts-announce] 20180916 [SECURITY] [DLA 1506-1] intel-microcode security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html"
},
{
"name": "RHSA-2018:2394",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
},
{
"name": "RHSA-2018:2387",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2387"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://xenbits.xen.org/xsa/advisory-273.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://foreshadowattack.eu/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.vmware.com/security/advisories/VMSA-2018-0021.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20180815-0001/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.f5.com/csp/article/K95275140"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.lenovo.com/us/en/solutions/LEN-24163"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.synology.com/support/security/Synology_SA_18_45"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Multiple",
"vendor": "Intel Corporation",
"versions": [
{
"status": "affected",
"version": "Multiple"
}
]
}
],
"datePublic": "2018-08-14T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Information Disclosure",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-07-15T02:22:58.000Z",
"orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"shortName": "intel"
},
"references": [
{
"name": "VU#982149",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "https://www.kb.cert.org/vuls/id/982149"
},
{
"name": "1041451",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1041451"
},
{
"name": "GLSA-201810-06",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201810-06"
},
{
"name": "USN-3741-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3741-2/"
},
{
"name": "RHSA-2018:2393",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2393"
},
{
"name": "USN-3823-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3823-1/"
},
{
"name": "RHSA-2018:2389",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2389"
},
{
"name": "RHSA-2018:2390",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2390"
},
{
"name": "RHSA-2018:2403",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2403"
},
{
"name": "105080",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/105080"
},
{
"name": "RHSA-2018:2395",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
},
{
"name": "RHSA-2018:2384",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2384"
},
{
"name": "USN-3740-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3740-2/"
},
{
"name": "FreeBSD-SA-18:09",
"tags": [
"vendor-advisory",
"x_refsource_FREEBSD"
],
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc"
},
{
"name": "DSA-4274",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2018/dsa-4274"
},
{
"name": "FEDORA-2018-1c80fea1cd",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/"
},
{
"name": "RHSA-2018:2388",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2388"
},
{
"name": "USN-3741-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3741-1/"
},
{
"name": "RHSA-2018:2603",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2603"
},
{
"name": "RHSA-2018:2402",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2402"
},
{
"name": "20180814 CPU Side-Channel Information Disclosure Vulnerabilities: August 2018",
"tags": [
"vendor-advisory",
"x_refsource_CISCO"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel"
},
{
"name": "FEDORA-2018-f8cba144ae",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/"
},
{
"name": "USN-3742-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3742-2/"
},
{
"name": "RHSA-2018:2404",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2404"
},
{
"name": "USN-3740-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3740-1/"
},
{
"name": "RHSA-2018:2391",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2391"
},
{
"name": "RHSA-2018:2396",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2396"
},
{
"name": "DSA-4279",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2018/dsa-4279"
},
{
"name": "RHSA-2018:2392",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2392"
},
{
"name": "[debian-lts-announce] 20180828 [SECURITY] [DLA 1481-1] linux-4.9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html"
},
{
"name": "USN-3742-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3742-1/"
},
{
"name": "RHSA-2018:2602",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2602"
},
{
"name": "[debian-lts-announce] 20180916 [SECURITY] [DLA 1506-1] intel-microcode security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html"
},
{
"name": "RHSA-2018:2394",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
},
{
"name": "RHSA-2018:2387",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2387"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://xenbits.xen.org/xsa/advisory-273.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://foreshadowattack.eu/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.vmware.com/security/advisories/VMSA-2018-0021.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20180815-0001/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.f5.com/csp/article/K95275140"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.lenovo.com/us/en/solutions/LEN-24163"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.synology.com/support/security/Synology_SA_18_45"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secure@intel.com",
"DATE_PUBLIC": "2018-08-14T00:00:00",
"ID": "CVE-2018-3620",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Multiple",
"version": {
"version_data": [
{
"version_value": "Multiple"
}
]
}
}
]
},
"vendor_name": "Intel Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "VU#982149",
"refsource": "CERT-VN",
"url": "https://www.kb.cert.org/vuls/id/982149"
},
{
"name": "1041451",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1041451"
},
{
"name": "GLSA-201810-06",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201810-06"
},
{
"name": "USN-3741-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3741-2/"
},
{
"name": "RHSA-2018:2393",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2393"
},
{
"name": "USN-3823-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3823-1/"
},
{
"name": "RHSA-2018:2389",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2389"
},
{
"name": "RHSA-2018:2390",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2390"
},
{
"name": "RHSA-2018:2403",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2403"
},
{
"name": "105080",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/105080"
},
{
"name": "RHSA-2018:2395",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
},
{
"name": "RHSA-2018:2384",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2384"
},
{
"name": "USN-3740-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3740-2/"
},
{
"name": "FreeBSD-SA-18:09",
"refsource": "FREEBSD",
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc"
},
{
"name": "DSA-4274",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4274"
},
{
"name": "FEDORA-2018-1c80fea1cd",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/"
},
{
"name": "RHSA-2018:2388",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2388"
},
{
"name": "USN-3741-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3741-1/"
},
{
"name": "RHSA-2018:2603",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2603"
},
{
"name": "RHSA-2018:2402",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2402"
},
{
"name": "20180814 CPU Side-Channel Information Disclosure Vulnerabilities: August 2018",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel"
},
{
"name": "FEDORA-2018-f8cba144ae",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/"
},
{
"name": "USN-3742-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3742-2/"
},
{
"name": "RHSA-2018:2404",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2404"
},
{
"name": "USN-3740-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3740-1/"
},
{
"name": "RHSA-2018:2391",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2391"
},
{
"name": "RHSA-2018:2396",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2396"
},
{
"name": "DSA-4279",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4279"
},
{
"name": "RHSA-2018:2392",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2392"
},
{
"name": "[debian-lts-announce] 20180828 [SECURITY] [DLA 1481-1] linux-4.9 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html"
},
{
"name": "USN-3742-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3742-1/"
},
{
"name": "RHSA-2018:2602",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2602"
},
{
"name": "[debian-lts-announce] 20180916 [SECURITY] [DLA 1506-1] intel-microcode security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html"
},
{
"name": "RHSA-2018:2394",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
},
{
"name": "RHSA-2018:2387",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2387"
},
{
"name": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",
"refsource": "MISC",
"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"
},
{
"name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
"refsource": "CONFIRM",
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "http://xenbits.xen.org/xsa/advisory-273.html",
"refsource": "CONFIRM",
"url": "http://xenbits.xen.org/xsa/advisory-273.html"
},
{
"name": "https://foreshadowattack.eu/",
"refsource": "MISC",
"url": "https://foreshadowattack.eu/"
},
{
"name": "http://www.vmware.com/security/advisories/VMSA-2018-0021.html",
"refsource": "CONFIRM",
"url": "http://www.vmware.com/security/advisories/VMSA-2018-0021.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20180815-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20180815-0001/"
},
{
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018",
"refsource": "CONFIRM",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018"
},
{
"name": "https://support.f5.com/csp/article/K95275140",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K95275140"
},
{
"name": "http://support.lenovo.com/us/en/solutions/LEN-24163",
"refsource": "CONFIRM",
"url": "http://support.lenovo.com/us/en/solutions/LEN-24163"
},
{
"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en",
"refsource": "CONFIRM",
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en"
},
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html",
"refsource": "CONFIRM",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html"
},
{
"name": "https://www.synology.com/support/security/Synology_SA_18_45",
"refsource": "CONFIRM",
"url": "https://www.synology.com/support/security/Synology_SA_18_45"
},
{
"name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009",
"refsource": "CONFIRM",
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf",
"refsource": "CONFIRM",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us"
},
{
"name": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"refsource": "CONFIRM",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf",
"refsource": "CONFIRM",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"assignerShortName": "intel",
"cveId": "CVE-2018-3620",
"datePublished": "2018-08-14T19:00:00.000Z",
"dateReserved": "2017-12-28T00:00:00.000Z",
"dateUpdated": "2024-09-17T01:01:22.367Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-3620",
"date": "2026-05-28",
"epss": "0.02259",
"percentile": "0.8486"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:330e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A4229DB2-8BBC-49F8-87A8-2E7D56EFD310\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:330m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FEBA7322-4D95-4E70-B6A5-E0D8F1B5D7EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:330um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0E91F46-D950-4894-BACF-05A70C7C6F7B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:350m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E12B40B-5221-48A6-B2A6-D44CD5636BB0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:370m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6BCB77C9-ABE3-44A0-B377-7D7035E8A11F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:380m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D06639F5-5EE8-44F4-B48A-5694383154DF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:380um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CD9662C9-59D3-4B3E-A4DA-4F1EE16FC94B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:390m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"637C3687-FBCC-41A0-BFE6-823BAE45FB92\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:530:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2350A197-193F-4B22-80E8-3275C97C78EE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:540:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734C7A7E-ACCA-4B34-BF38-0FAED988CC6A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:550:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D9ABAFC-B3B5-449D-A48E-2E978563EDE7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:560:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99019EA0-6576-4CE7-B60A-975D418AA917\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2100:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E846AEF-751D-40AD-84B5-EFDC9CF23E2F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2100t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EB9DD909-B2AC-46BA-B057-D239D0773CAD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2102:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"54F5C355-FDFC-4E71-93AA-218389EF10E6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2105:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0A1CA1E-971D-4F67-864E-2E772C1E736B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2115c:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B5F8391-D974-49AC-8550-ADB3FA6C0535\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2120:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8302BF58-9E54-40DA-BCFE-59CA52C460D9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2120t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ECCDE9EF-037B-4650-8131-4D57BE141277\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2125:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"47BA9DA8-F690-4E3C-AEF6-6A5C7BAA6F19\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2130:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB8253DA-9A04-40D6-84C1-C682B4023D4B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2310e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DAF6D175-85C3-4C72-AD9F-31B47EF43154\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2310m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A5FC594-2092-4240-9538-235BBE236DD9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2312m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"87D95F00-EA89-4FDE-991C-56636B8E0331\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2328m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"32C40D38-F7F2-4A48-ADAA-6A8BBD6A1A00\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2330e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4158561F-8270-42D1-91D8-E063CE7F5505\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2330m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FF0DEA96-0202-41EB-BDC3-24E2FC4415B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2340ue:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F8BACE1C-5D66-4FBC-8F86-30215A623A94\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2348m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF707146-0D64-4F3A-AE22-956EA1CB32B6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2350m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8118C3F9-0853-4E87-9E65-86E1398B2780\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2357m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A298501-C4D7-48D4-90F9-15AFA59DED48\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2365m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FEE1B07B-3D92-4D2D-8667-D902F002277F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2367m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F05CB19-1059-4C4D-BFD7-9F51A22A4F97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2370m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5588732F-7F1A-4C24-B35F-30532107FFDE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2375m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A127DD5D-426D-4F24-A8C5-DC9DAC94B91C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:2377m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"26EE0BBD-3982-4B0F-82F6-D58E077C75DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3110m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FAEEC918-EA25-4B38-B5C3-85899D3EBE6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3115c:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"813965F4-3BDA-4478-8E6A-0FD52723B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3120m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C5EA2F4-F3EF-4305-B1A1-92F636ED688F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3120me:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"04384319-EE8C-45B4-8BDD-414502E7C02D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3130m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C52528CE-4F31-4E5F-8255-E576B20F3043\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3210:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6C3F422-F865-4160-AA24-1DAFAE63729C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3217u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D034E7F-4D17-49D7-BDB2-90CB4C709B30\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3217ue:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3C18E6B4-E947-403B-80FB-7095420D482B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3220:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2814CC9F-E027-4C5A-93AF-84EA445E6C12\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3220t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"24A470C3-AAAA-4A6E-B738-FEB69DB78B9D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3225:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A1236944-4942-40E4-9BA1-029FEAE94BBC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3227u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"086CAB4B-A10A-4165-BC33-33CADCD23C0F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3229y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B1A6A1EB-B3AB-4CB4-827E-CCAAD783F8E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3240:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AAFB6B30-BFB0-4397-9E16-37D1A772E639\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3240t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DFCB9D7B-7D0A-435D-8499-C16BE09E19FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3245:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"64277594-9713-436B-8056-542CFA9F4CFC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3250:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"589BB170-7CBA-4F28-99E3-9242B62E2918\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:3250t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"91B9C4D9-DA09-4377-9DCD-225857BD9FA7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4000m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"03D0265F-840B-45A1-90BD-9ED8846A9F63\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4005u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"74BAC0EC-2B38-4553-A399-4BD5483C4753\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4010u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4477EBA6-F0A7-452B-96E8-BA788370CCA8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4010y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1285D817-B5B8-4940-925D-FCDD24810AE6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4012y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D289F7B4-27CD-4433-BB45-06AF98A59B7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4020y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"00168903-6012-4414-87D1-2EE52AA6D78E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4025u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6AE8D524-577E-4994-8A4B-D15022C84D7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4030u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"75977B0B-C44D-43BC-8D7A-AF966CDB1901\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4030y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AE7F5D52-9F41-49A4-B941-E0D777203FF7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4100e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"52B5B3FD-5BEA-4DE8-B010-55FED1547167\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4100m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"167B1B04-5823-4038-A019-3975A3B447C9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4100u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6C7A4EA-0B5E-47CD-8924-3B1B60EB4BE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4102e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1BA096E0-5480-47CB-822B-D11D7E20F69F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4110e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"30357469-0B8F-4385-A282-2F50181EA442\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4110m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3BE70772-7796-4594-880A-6AAD046E4D8D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4112e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A9E2F8D-2974-4833-9EC2-233CEE257C26\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4120u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"17EE3078-454F-48F8-B201-3847DB40D5C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4130:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE32C500-55C2-41A7-8621-14EBF793BF11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4130t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"52D3DF52-501A-4656-98F1-8DD51D04F31F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4150:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EA603AD-6CF1-44B2-876D-6F1C0B7EF2C9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4150t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"09578301-CF39-4C24-951A-535743E277EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4158u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F4D14AA-7DBF-4B73-BDEF-6248EF5C0F7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4160:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5A65F303-96C8-4884-8D6F-F439B86BA30C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4160t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1E046105-9DF5-425F-A97E-16081D54613C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4170:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2987BCF-39E6-49B6-8DEE-963A38F12B07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4170t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7AEDE2B7-9AA2-4A14-8A02-9A2BFF0DDCBF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4330:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5AD92AD8-033A-4AAD-91E5-CB446CCE9732\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4330t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"77E0E73A-F1B4-4E70-B9F1-EE97785B8891\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4330te:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61D6E3CC-79B1-4995-9A76-41683C7F254A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4340:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F9CEB2B1-BD1A-4B89-8E03-4F90F04A0F0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4340te:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6FE5773D-3CD1-4E63-8983-E0105C46D185\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4350:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A7C307A-6576-4A0A-8F4E-0981C9EE2901\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4350t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"18B3A53B-902C-46A5-8CE7-B55102703278\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4360:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB843479-729A-4E58-8027-0FC586F051AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4360t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1AF5A233-1E77-49FD-AC2C-60D185481E28\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4370:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"18519CF2-B0DA-42DD-8A3E-9084298C210A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:4370t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"329D5FCF-7EC5-4471-906B-3619A180BD52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:5005u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0DD43EAA-F3A5-4748-9187-A6E6707ACD11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:5010u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6F3C14D-4BFC-4205-8781-95E6B28C83C1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:5015u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"20942AD8-ADB7-4A50-BDBE-DB36249F4F52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:5020u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1EC6ED02-134B-4322-AB72-75A0AB22701E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:5157u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6FA74EEE-54CC-4F80-B1D3-99F7771335ED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6006u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6B859F7-0373-4ADD-92B3-0FAB42FCF23C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6098p:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AAC76F31-00A5-4719-AA50-92F773919B3C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6100:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"49996F5A-51B2-4D4E-AE04-E98E093A76CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6100e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F8406B0-D1E5-4633-B17E-53DC99FE7622\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6100h:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3D49435C-7C33-454B-9F43-9C10F28A28A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6100t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D17E1A0F-1150-4899-81BC-BE84E4EF5FA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6100te:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EADD98AE-BAB0-440D-AB9F-2D76BE5109E2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6100u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ED44A404-8548-4EDC-8928-4094D05A6A38\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6102e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A6E4AA3-BEBC-4B14-9A52-A8F8B2954D64\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6157u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D2AAD8F0-0D31-4806-8A88-A30E5BE43630\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6167u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8164EE5F-6ABA-4365-8718-2F98C2E57A0F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6300:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7110AF9-A407-4EE2-9C46-E5F1E3638E9A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6300t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A06696D-37F0-427D-BFC5-1606E7441C31\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:6320:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E9F8A5FC-5EFE-42EC-A49B-D3A312FB5F6F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:8100:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68A76015-0A05-4EC7-B136-DC13B55D881F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3:8350k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C352DCE8-E8D9-40D3-AFE9-B5FB84F7ED33\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:430m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"54464F6C-9B2D-46BA-AC44-506389F3EE0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:430um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FA11017-EA58-45EE-8408-FCCCF7183643\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:450m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8A5098A5-E4E8-47E4-8CD0-F607FF0C0C90\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:460m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"442AD778-D56F-4C30-BBF8-749D6AAC4737\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:470um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF7D3F31-AF4D-4C50-8590-A763AAC7AF07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:480m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"445BFC2E-38FA-4130-8550-0866EC4EDA33\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:520e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6DC2746-CE41-40C9-8CFA-23231BBCAE77\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:520m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3C3A8976-5E4D-490A-A87D-A47D1B2B903C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:520um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C8535E6-220E-4747-8992-45B6EAFC555C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:540m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7479B49-F484-4DF2-86CB-E52EE89FA238\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:540um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6D68512-746D-4E95-857B-13A0B6313C5E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:560m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4312BA84-F9A0-4BD4-8438-058E1E7D6C0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:560um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"60E52DF5-C713-4BC4-B587-FF6BDA8509CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:580m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"304ADCAC-9E49-42BD-BC92-58D9B2AD52E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:650:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2AB02172-B9A7-4801-88F2-98BF5843184A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:655k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5141380E-BD18-47C1-A84C-384BA821773D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:660:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1AE6C49E-2359-4E44-9979-7D34F8460E35\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:661:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C004B75F-37AF-4E61-98F3-1B09A7062DDB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:670:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F7126D19-C6D9-43CB-8809-647B1A20E7DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:680:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9CC98503-A80A-4114-8BF2-E016659BE84E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:750:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"01E6F4A7-24BE-4AA0-9CDD-84FBC56FE9BB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:750s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3821412D-B010-49C4-A7B4-6C5FB6C603B1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:760:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A34CA5CC-9EB1-4063-8B9D-3F566C1EFF76\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2300:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5CEB5D2D-FF54-4BDB-9E9C-8C1B2719FC9A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2310:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6AD5B51A-AEA0-4DA2-BA60-94A2D5605352\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2320:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F96C6CA0-434D-428F-B629-A971C2937628\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2380p:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"301AB72A-A6F2-42C8-A931-94EF2271443F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2390t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"59414B5A-05B8-49AF-A197-2A31729DDB65\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2400:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0BFDD380-692F-41D7-996F-F97FC74DC7CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2400s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"49602828-2BFC-4571-9F05-6210FD263DF2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2405s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"87E03978-E16D-4A9B-8AE7-9F4F1171C14A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2410m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"03096A9A-5758-47E6-81E2-BCFE847C41F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2430m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"150CC865-7975-45EC-BFF7-A94146442BA8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2435m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8FA1308-589B-432B-80F9-9A499D083ED5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2450m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6ED2453E-30E1-4620-BEC5-21B0083449E2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2450p:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0FE8DD05-D700-4F89-9B01-D489029DF7A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2467m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"050957CA-6191-4F9F-9D07-48B342B3B1B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2500:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DACBF998-8B11-45C7-9017-486AED4FAE6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2500k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C9F2F3C4-FC94-414A-A208-913A43D57D75\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2500s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"641152EC-F4B4-4E5E-B396-AC4CAAB805BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2500t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4911E332-B8BA-4336-A448-3F70D2BBB147\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2510e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"330EC403-3174-4543-9BBE-CEC0ABC1575D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2515e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5EF585D0-507E-491E-9C3B-78EE26F2F070\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2520m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DD00F7C6-6762-4DC9-9F6C-5EAC4ACB1C54\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2537m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F5D885A-85C4-4A11-B061-61EFF6B6E329\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2540m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0502B59F-933C-4E25-A2EC-9296B197E139\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2550k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99D9C0A9-2DFF-4760-8FED-AC2DA7968E51\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:2557m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B5A1BAEC-18BF-4607-BFB7-48102E75186A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3210m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D49ED138-F42D-4451-A350-0B2DD5AB9444\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3230m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5ED91472-90FC-4AC8-96D5-1550A8502411\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3317u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"57CEEFA6-CEED-4CA3-8DDC-B6601D69FB7C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3320m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2FD25ECD-0605-4CD7-9DC5-294ACD7EF1B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3330:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2784E2AF-A5E5-4960-830C-B3EFB84043D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3330s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9112FA50-5527-4B20-80F5-2DE9E66D09F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3337u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"73CE4E2E-B2BF-409E-B18C-D67DA810FE9B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3339y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E2B84D67-0B1D-4B74-BC85-AF8F933D8429\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3340:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BCA05A18-1523-4EED-9D2E-0A258A33F24F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3340m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C34E70EB-92F0-43F6-8883-FE422BE1A3FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3340s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"78D301F1-20C2-4756-9A90-37F14835CE14\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3350p:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2EEC8B5-1CAB-4FBE-BBA2-D2FFA3EF9489\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3360m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA63B803-4D48-42E8-A793-F92ABCB8BFC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3380m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"129DB9CB-E878-4856-A954-15FFE1428636\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3427u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"730DB4AA-FD7D-40C6-8D7F-19937832EF9A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3437u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07E86978-4820-422A-8C7C-FF0697DAED05\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3439y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8A7A9DB5-F544-4FD8-A9CC-0BD6257516AF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3450:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF813AD9-D296-4915-861C-8DE929E45FE3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3450s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"04A65469-083F-40B5-86C5-A2EAE5B2F00A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3470:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F1AA82E-BD86-40F5-B417-71DF6AF53A37\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3470s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B71A6DB0-5EB0-4712-8480-CF427F521D33\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3470t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8223D5A1-ADF1-43C6-AF91-EE5C413BCB37\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3475s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4DD69605-F52B-4623-921A-983A5A408ECA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3550:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B1D5685F-6FFE-4A6A-9FF8-940C8DA36499\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3550s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B94062D9-8DDA-4B4A-B3B5-07F71F5B97E7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3570:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3832D0A6-419D-4876-B5C4-920578F713F3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3570k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E1AA5C8A-83A8-4F96-9D7C-7A50ADDB2341\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3570s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"404E38E6-9EB3-41D0-97A7-DC579688BFB0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3570t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"40E4A921-AB28-47B7-B5A3-EB82193D15BA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:3610me:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0357E48-2300-47B4-B9E5-9FE813A2FC09\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4200h:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"96CC28B6-57D1-4919-AA55-A262CC16AFE6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4200m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0EB4C54D-1265-425A-B507-E1099844875A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4200u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97362147-3A71-430D-9064-4435D45C3B8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4200y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89212CF3-4E99-4389-94CE-F4211DDCA01B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4202y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FBEA4DA3-0AFB-4FCE-92DB-5B316775BB17\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4210h:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"611C0A0A-1FA3-42F9-82E8-BFCB71A077DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4210m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36F027D9-DCB4-4A3D-8987-41F2941DBD45\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4210u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E23BCEC9-2BFB-4B41-9A7A-18B1347C6202\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4210y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4924CE39-A846-4DB4-9547-6322FC5AD6B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4220y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6C9E2C9A-94A1-456B-90D5-54932DF64C22\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4250u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AC04C652-B2D8-4002-A50E-8AFE83204A25\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4258u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"10D413F0-CDBC-4A63-B9A7-9E7725BA1E83\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4260u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"754A8826-59F7-4A71-B74B-737BE9C7DE4F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4278u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FADB6BDA-6825-489B-AB39-7729BA45DFD8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4288u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7913F57E-E600-4767-AF51-D045E1898E72\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4300m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BD3783F4-5A05-45AA-9791-A681011FD78C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4300u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"01E3114D-31D2-4DBF-A664-F4049D8B6266\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4300y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D8EE6578-981D-470C-BB24-4960B3CB1478\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4302y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E3320D50-C5C9-4D75-BF1A-5BB7BCBFE2BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4308u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7EE59839-8EB9-47FE-88E2-F0D54BE787A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4310m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"75694A3D-080A-4AA7-97DF-5A5833C9D9F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4310u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"19C5E27D-BBAB-4395-8FC6-8E3D4FB9A1EE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4330m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E996176-3DEA-46E6-93B7-9C0DF32B59D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4340m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4417007D-126A-478B-87EA-039D088A4515\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4350u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F78C2825-F6A3-4188-9D25-59EAEC8A7B0A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4360u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF2FA85D-B117-410D-B247-8C5A3479319A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4400e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A041D27-132C-4B15-976F-1750C039A89F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4402e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D495E06-BF2B-4C5A-881D-94C93CD2BA2B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4402ec:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C31DFB8-8D8C-47D6-AAFF-BAE829A3D965\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4410e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"088BC395-06D5-4156-85EB-63C4A9552898\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4422e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33A220A2-A6D2-46A7-B168-607400EEDCE3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4430:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1E79232F-7196-440B-82D4-165885251232\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4430s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ED866954-77AB-4CA8-8AED-4252C595FC4D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4440:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"28A1F516-B180-45D4-8EB1-754B7497CB2B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4440s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36758A04-64D3-4150-A004-CF042FA31CD9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4460:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1E01752E-F1DD-400A-A917-216CAF15B0F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4460s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AD47EC58-F776-4F59-8F15-4B208904CF4B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4460t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D3781F4-2123-4FA1-8AF5-D0D1E6C1A5B9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4570:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"94565E35-8A58-4CB6-A489-C796DCB97FC5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4570r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"49964D35-5323-4412-BD54-661630F9A8CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4570s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F0A37E7D-1BF6-4A2A-BF52-5F0EC4B4F341\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4570t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0F66468-87D0-41FC-934B-5924BE2956CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4570te:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3E0F93E1-4607-4DF4-AC6E-4B7254D4A8DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4590:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"45C0D99E-443E-4AB1-A07A-900A09FE177E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4590s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6D0FD76-C1FB-43D0-8511-FC0BA6DA7960\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4590t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A9DAEE52-09C3-4A09-9958-9D6807B2700B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4670:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B97690D4-E814-4D40-B170-BE56D7AE2C1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4670k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89804F2C-D32D-4444-ABEA-5B241153D096\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4670r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2AAAAF9C-B29B-4020-BAFF-C87B1A08294A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4670s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ECE60E1E-AB8D-46E4-A779-A54F2D20B5D5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4670t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EB958A28-7C9A-4BD0-B002-4E1A65CDB0A4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4690:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C27B318-2AC1-423D-B0C8-583BB1800D5A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4690k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9E58E3D0-1154-4B13-BA16-67CE67DF0637\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4690s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"32D2ACB3-B906-4944-A021-03C4645965BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:4690t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FFF834A-D7F0-4E48-AD3D-DD0BCE6DEC0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5200u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E1A41BA-A1D6-484A-BAD2-68DF85598354\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5250u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"11260C9D-69A9-4D81-9CCF-2E116DD75F7C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5257u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C020F06-FD27-46E3-A48F-3F60F33BB969\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5287u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"03C74F10-6A7F-4F68-8A34-E981E1760DE5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5300u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"24741B98-8D0E-4307-AAEF-A14B2531DCA9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5350h:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8D4FA4BA-4304-4A70-9F86-120F2A3D8148\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5350u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"367FC8BA-F046-4264-A049-49E933E7698F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5575r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE9B68D3-1DFB-4468-85C4-AC13E6CBC111\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5675c:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C966A016-B650-44D9-B8C4-1ED50AB318DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:5675r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC448FF0-6D3F-4609-864B-4191905EE2B9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6200u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0FC246FE-4CA6-4B2D-83C3-D50A386C24A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6260u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"758A14DB-1BAF-442A-BA7C-5E9C67847BEA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6267u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61309100-CFA7-4607-A236-8910838AA057\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6287u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"82D76265-7BD0-4C51-AE77-22B22524DE81\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6300hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE38B195-BB8D-4747-881D-E8033760B4C8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6300u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1AA8BE76-168D-48A3-8DF6-E91F44600408\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6350hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3B656975-5D71-4712-9820-BDB7BC248AFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6360u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA045267-114D-4587-B6D7-E273C28DC9B1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6400:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"77018415-E122-406E-896D-1BC6CF790BE3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6400t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3ADF37F1-546B-4EF0-8DEC-DC3B9F5309FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6402p:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7469256-1A64-46FF-8F5A-A8E9E3CF5BE5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6440eq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F9069B9-9FE3-4AD5-9A8E-55C0F73BD756\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6440hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4E1C012-3E05-44DB-B6D2-BFD619C034B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6442eq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"15D689D6-8594-42F2-8EEF-DCAEBA885A67\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6500:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6446000-0494-4DC5-ABAA-F20A44546068\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6500t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99B94EEC-6690-45D0-B086-F4A5B25C25CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6500te:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8B767B6E-B3E6-4424-97A6-89A7E7EB0EEB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6585r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"832AB3CD-E3A1-4CCB-A210-287973563D0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6600:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5A26C0CC-68AD-40F5-96B8-87E6C643F6F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6600k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99C4221A-9994-43B3-9C7A-E13815A50A10\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6600t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"20070B1D-B91C-40BA-A9D8-E80170A2933F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:6685r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A70129C9-371F-4542-A388-C095869E593A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:8250u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6C4DE25F-168A-4C67-8B66-09F61F072BD4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:8350u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"58157F24-D89E-4552-8CE6-2F01E98BD1E5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:8400:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BC7FFD78-1E1C-4246-BBD3-73FAC06AA46B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5:8600k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"45ACBBEA-EC95-4F3E-B585-893DB6D21A0F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7y75:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7DEC55DF-1950-45E5-A5F2-B5604AFA1CBD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:610e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6A5EC79-1B21-4BB3-8791-73507BC8D4DC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:620le:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FCB4AFC3-FE30-4F46-ADC1-D03EB14E757D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:620lm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E0387587-AAB6-4284-8516-4DA3E3582D30\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:620m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A238C975-9196-449F-9C15-ABB2E9FD1D06\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:620ue:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6F17F4A5-120B-4E00-97C8-8A85841ACBC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:620um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2537F047-64C9-4E73-B82C-310253184183\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:640lm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A55857C-649D-46CE-AEDA-6E553E554FC1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:640m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7BA4892D-AFDF-4441-821E-5EBF7F64C9F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:640um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"327E06A3-7F0E-4498-8811-10C8D15398FE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:660lm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1624E6D6-858E-4085-B0B9-362B819EFD88\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:660ue:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"50D61F4A-40F0-477C-8326-7359D3626E77\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:660um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1455B4DE-7F1C-4CF2-AE02-2EDD20025D62\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:680um:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B215788-860B-46CD-9A08-43AFF98FAEAA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:720qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2B92FAD5-CA6E-48F7-9613-3A4CE90F5F54\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:740qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E4EB132B-000C-4A17-AFB3-19F40A73D2CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:820qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5C4815AE-B635-4545-83C2-5EC4E0128337\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:840qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C0046C06-E3E6-4674-A4D1-332DD29D9552\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:860:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C191851-3DC3-41C7-AD89-81F091CCC83A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:860s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21126922-8E81-47F4-82D4-CBCDDACEC4FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:870:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"209E18B0-BBB5-4C65-B336-44340F7740DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:870s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C867C0B8-91A4-482A-B7DD-54AB9599AE52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:875k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"30F03843-8A51-4CE1-BE6C-994BDE3A8F97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:880:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"09854948-2657-4261-A32A-0523058F072E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:920:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D13904A5-266D-481C-A42A-734C3823A238\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:920xm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ACC82FCB-0541-45C4-8B7E-CB612D7F702A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:930:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6C18BD84-5E9C-4C9E-B0AA-2CEB0D7A58C3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:940:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F5ABC7E-C4E0-4850-A1E6-07EBCF4A87D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:940xm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"501E9355-0CDD-4951-BCC3-47962788BCCB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:950:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B3D976D9-62F0-43C3-8359-E51E26B6CD87\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:960:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"02AFBCD0-9B4B-4CA3-8FA9-D8B6ECB24894\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:965:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"64ADE9AF-196F-4E0B-BC66-7DE0183F9032\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:970:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C90CCA48-1705-4564-AAF9-271201BD5113\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:975:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B82BAFF-17F5-465C-8032-67D5ECAB2921\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:980:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F694FEC-B97D-4BDA-ADFA-751E8BFB7CD2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:980x:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F831371E-7437-48D7-8281-1F406215041B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:990x:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BC4F06B5-615A-464A-A0C4-7AABEE8530CD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2600:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"92AF503A-A2B1-4FC3-858B-264049ADF0F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2600k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E702C7EC-B1D9-4BDF-B334-2004CD76B52B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2600s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E39F31D6-DC4B-46FE-BE5D-EA612D915A96\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2610ue:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"51CB8036-5F36-4CD4-9B3E-D2401F2E64F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2617m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F9849BA3-3990-4E30-B99B-ADD043314CDA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2620m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A20FB18A-D3DA-4DE9-BEFF-75B7AB9B9A55\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2629m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A67CD6F-5E4F-4E69-A2A9-A4033DCE08EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2630qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0A22E92-1EA7-45D9-AC86-EC3D9664C294\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2635qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7FA2911-6561-47BF-BEE8-DDA31642C346\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2637m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1FA6CA23-6F2B-44D5-B2DA-4F142BA3E48A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2640m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F829DED-4D92-401A-BD80-C070DE57FC7C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2649m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F560575C-FD8E-485D-B50A-572604BBE903\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2655le:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6ED8C51B-AE59-46DC-85F9-6D3B2891CB3F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2657m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A38D00A-B9DC-44DF-8247-70355FF9A6EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2670qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"381EFC43-D5D9-4D10-90BE-4C333A9BA074\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2675qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CBEDED18-2755-4C55-A1A1-04B4D5F40276\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2677m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F04B57EC-0731-40C8-939F-1C686A65A0FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2700k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2AB301FB-EB3E-4F5F-868D-5B66CC7E1E6B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2710qe:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE1D28F9-B135-441B-A9BF-792DD356E374\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2715qe:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D01CE3E-5C89-4FC0-9097-CAC483ACD441\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2720qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7BDD55C4-AFCD-4DF2-921C-DDC1D7556DA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2760qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F52334F-BE6A-4FD4-9F63-AE9BB017115B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2820qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7C9BCC3-B9A6-4195-BF2F-E7BBCE8DC269\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2860qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A4DFFA7-AA0E-4D7E-97B8-13389FD47D4A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2920xm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"707F6671-57AC-4DF4-8024-444502E5C92E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:2960xm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3C1FCE07-F9E8-4B14-95CE-01784D472128\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3517u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C208711F-FC06-46C8-8849-27054DC1B264\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3517ue:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25AB8041-F201-4BB3-AAD9-199B06697DF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3520m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D75C474C-D5EF-42D6-9B2A-A504BEFCB982\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3537u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F566CD3-3649-492B-B0AB-A107E51675B9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3540m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB9F3D74-AE72-4FC5-83E9-890781AF3093\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3555le:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E8EA6A7-4AB8-487E-B5DD-9989CC5F1CD8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3610qe:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DF63DDC8-A0C1-482B-92F2-CF6135E8C2A5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3610qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C69918C6-7AAD-4AA5-AB72-C275367B1008\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3612qe:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"06155B0B-A5AD-4A82-8C02-D264981687A6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3612qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F76C19A4-FA26-432A-9443-9F92B2A946EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3615qe:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99BEE9BE-E49A-489B-B333-95D0993F8FA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3615qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7427A678-EC47-4030-B905-619DD95F5A82\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3630qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86749716-1C9F-4C2A-B2A7-E62DEC10EA30\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3632qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FD000B53-06DA-4ED4-B0EE-9CB201B75C8D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3635qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8424463-C329-4BAA-8AA1-25CD8B63292E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3667u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"52727E62-0048-4C56-BC8C-B3450D257B21\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3687u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9D8223AA-F077-45FD-A7E3-3C2C1A8F6E91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3689y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FAA34B50-2330-4D77-BF1A-6F05F3EF222C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3720qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6421F69-1076-43D2-B273-DE80FB2D5F72\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3740qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1EDA9E2-CFE7-4917-BE48-A83208BDF0F3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3770:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9A34E7FC-93A4-45F2-A7B6-4A8ABFCAB0F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3770k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E611EDD-D44C-4311-B681-431D7C574528\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3770s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C5E1B6AA-2F9A-43A8-9147-2BD9474E54C7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3770t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1886D007-85B6-4E5A-968D-A1FD476A08A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3820qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BDDDCB65-4404-49BC-9515-ECECD58A667F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:3840qm:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B8D3E00-64C3-407A-9B00-8B6E383F73FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4500u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CB1B00A1-9C15-47C2-9F57-66586DEACC7D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4510u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CB5BF932-459F-4DD2-B160-5FE0371C7D83\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4550u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A58ACE96-F1BE-4261-8F94-FC3C6E7C7561\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4558u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"783D6EA7-C016-4314-A87B-4FED1DC7114B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4578u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7AD0176F-FFAE-4A85-9327-CE72FE059E90\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4600m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A56970C7-F8D3-41B2-A78B-0C7F4A2A4E0A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4600u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"26D4CE1F-86C8-4E48-9146-9DB57BF540FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4610m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CB7F9D65-5537-4C25-B02B-2393F60D1299\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4610y:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F09C8A92-820D-4572-A797-180E17A7DEB6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4650u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CA7D77A2-0D9A-4D0D-B0DC-152757917BE6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4700ec:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A07D3F1A-16CE-461F-A2F4-80FE5F841CB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4700eq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C04557A-C508-4FAD-A535-1C0AEFF08075\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4700hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6AFAE489-6679-4705-BF9C-BB6D385A1DC3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4700mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"429A99C8-BC55-4887-893C-7124C1A5DB08\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4702ec:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E3A2B709-CC19-4116-A5BE-5DB5C8B45A12\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4702hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D79DAC74-1F28-4EC8-B417-3FAFFB74C4BB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4702mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6F1F1377-6220-43FB-BEF9-BAA7B0158147\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4710hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"18422CA8-3000-46B1-9065-2369E6B0BE16\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4710mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D558C66-E80E-4FC7-A0DF-485466390C46\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4712hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E23EA9AE-9E70-47B5-AD9B-0DF13A0939E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4712mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"860F22F6-4C87-47C5-965E-02A1AFF41A72\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4720hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"19A2CA86-BFA8-4C78-987D-AD26F32622F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4722hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EEF64E0A-CDB0-427E-A96F-095EFEBA0A3D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4750hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"425F6D34-EE60-464B-8EA6-8116EDAA1219\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4760hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CEB9F657-1239-4424-A2E8-F8BD98C0095E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4765t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F631403C-0A67-42CB-815C-133EB87E0C95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4770:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6A4A5A57-B1A2-4BBA-AC36-7EA7DF9CDE06\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4770hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0453C0EA-BA67-49D5-964F-35493F97D905\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4770k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D4D237E-ACB7-4382-AF5B-D27E634BF867\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4770r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B5461EB2-2958-4923-86AF-C74D449120B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4770s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"45C22141-E698-4E38-AF50-9CE04C1168FE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4770t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"49D0E470-427D-4A68-AFD2-982A4F7CE2D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4770te:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"43AB50F3-14AC-44BD-B7F0-A683C5FD1A3F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4771:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"713C4B7A-C38A-4818-A258-D07DEDEC906E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4785t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C59740BE-FC30-4400-B978-1DB41282971C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4790:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"839728F0-5F23-462F-B493-C37EE4C874F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4790k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6F1B47DA-BA53-4D7A-9B5B-582238D5E99A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4790s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D452F1BF-1FA5-463C-8F13-6357509FB5D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4790t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF6D1F4C-B396-468C-BA32-9367A68C95DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4800mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B76A812F-D77A-49C8-B7A5-0C08258D4BBD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4810mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E001AAB-07EC-47BF-BDE9-BB927872781D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4850hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1DF11F5-61E8-4A98-86C8-49D6B3224FCC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4860hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AED153E7-99A2-4C02-B81B-C3DDF8FAE1A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4870hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D024802A-EA60-4D9B-B04C-027A0703EABD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4900mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA731F3C-1F04-4EE2-83EC-9486F5032903\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4910mq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"544A59F6-E731-43C8-8455-69256933E71D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4950hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"624258EE-7FFF-4432-9B6D-4D60AA73CD9A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4960hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"69A2701A-35A8-4268-B9CF-40BA3219373B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:4980hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"15E671F6-8DED-4735-BE97-58A60E5B5C13\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5500u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3FC68B2A-8570-4311-BB60-49DBBDAF7430\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5550u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9826FA02-937E-4323-B9D5-8AE059ADBE95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5557u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9B8630BB-48AA-4688-A6F0-212C1BB4D14C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5600u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9AC98D35-D7D5-4C24-B47E-EDE2A80B2B9E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5650u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A2F8ABCB-12C3-4C45-844E-B07F77DA2DE9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5700eq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"326105AC-3926-437E-8AFF-916960107050\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5700hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"866E1275-7541-4B80-8FDF-53246A204C15\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5750hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E190929D-D3CC-46E1-A903-0848829061DF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5775c:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"81E4EBCB-B660-4F6A-AD73-81B9D8964162\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5775r:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"55D58CC5-CB46-464D-93B8-6AD5A19AF097\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5850eq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16541D3E-EBBD-4D92-96D8-F169733377AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5850hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3F08D257-F570-4D39-A6E8-0F60E55472E6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:5950hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C20ED667-2BFB-41C7-82BA-9F0C0044DA08\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7500u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6158ED8A-007E-48B7-99BF-8BA03BF584BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7560u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBA7096A-F321-49A0-911A-F9683ABE6E6A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7567u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6A471395-7F8F-4BA5-962D-4D8F271FAB47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7600u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B9484380-92B9-44DB-8E20-DC8DE02D1CA6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7660u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8010808D-805D-4CA3-9EA2-55EB1E57964C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7700:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9716FE9F-A056-42A3-A241-F2FE37A6386A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7700hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F73422A3-ECA0-4C41-9AA5-CF7D77885CF6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7700k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A96A5AF-C9EF-4DED-AE25-4540A2B02915\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7700t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D5115B12-053A-4866-A833-D6EC88D8F93E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7820eq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C5619D4D-9685-4595-8A5F-A18273FE4213\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7820hk:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B77E00E7-0EA4-4E32-A693-0E0F66BA4C57\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7820hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DAA3457E-7E1A-4878-9752-79382E954A66\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:7920hq:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68630C63-4457-4E12-B7BD-AD456B237FC5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:8550u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6FB5695-2950-4CEC-81B4-FD280F835330\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:8650u:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F340AF8-508F-449D-9AFA-4E55F069B4F3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:8700:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E944410E-D674-4141-B50C-9F55090325FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7:8700k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6438E07-0AC0-4BF9-B0F2-9072CA9639D6\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m:5y10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5079AA70-C864-4AE2-809C-52B50632F2B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m:5y10a:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D124BCB-D8C3-49F5-B05C-E09B3CEBEBCD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m:5y10c:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6A86291B-C986-4320-BCEF-9F5AD8B309D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m:5y31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1227659F-1393-4189-978B-CC3DC53BF407\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m:5y51:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C2DB843-638F-41EF-B486-409318AA2DE9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m:5y70:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0004D8A-A186-4DA2-A7AB-18A6456438FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m:5y71:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"75B6BE9F-F113-4976-951D-53F2E183A95A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m3:6y30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEB005F1-9719-4985-B9D9-2140C962ADD1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m3:7y30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A94D0C1B-F30F-4724-915E-192C53FAE58A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m3:7y32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3F247860-1D2C-415C-AFBD-26BD875AAF02\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m5:6y54:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9697EDCD-A742-4AC6-876E-1080AD684207\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m5:6y57:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E73924A-875B-44D0-8F7C-A822B0488126\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m7:6y75:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"03751B92-EE07-4F16-A476-BD25561810BC\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DAF71B61-A595-476B-B949-1A0FBDB360A6\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.\"}, {\"lang\": \"es\", \"value\": \"Los sistemas con microprocesadores que emplean la ejecuci\\u00f3n especulativa y traducciones de direcciones podr\\u00eda permitir la divulgaci\\u00f3n no autorizada de informaci\\u00f3n que reside en la cach\\u00e9 de datos L1 a un atacante con acceso de usuario local mediante un error de p\\u00e1gina del terminal y un an\\u00e1lisis de canal lateral.\"}]",
"id": "CVE-2018-3620",
"lastModified": "2024-11-21T04:05:47.007",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N\", \"baseScore\": 5.6, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.1, \"impactScore\": 4.0}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:C/I:N/A:N\", \"baseScore\": 4.7, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2018-08-14T19:29:00.793",
"references": "[{\"url\": \"http://support.lenovo.com/us/en/solutions/LEN-24163\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/105080\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041451\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.vmware.com/security/advisories/VMSA-2018-0021.html\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://xenbits.xen.org/xsa/advisory-273.html\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2384\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2387\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2388\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2389\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2390\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2391\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2392\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2393\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2394\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2395\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2396\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2402\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2403\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2404\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2602\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2603\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://foreshadowattack.eu/\", \"source\": \"secure@intel.com\", \"tags\": [\"Technical Description\", \"Third Party Advisory\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201810-06\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180815-0001/\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault\", \"source\": \"secure@intel.com\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K95275140\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3740-1/\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3740-2/\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-1/\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-2/\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://usn.ubuntu.com/3742-1/\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3742-2/\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3823-1/\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://www.debian.org/security/2018/dsa-4274\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://www.debian.org/security/2018/dsa-4279\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html\", \"source\": \"secure@intel.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/982149\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://www.synology.com/support/security/Synology_SA_18_45\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://support.lenovo.com/us/en/solutions/LEN-24163\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/105080\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041451\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.vmware.com/security/advisories/VMSA-2018-0021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://xenbits.xen.org/xsa/advisory-273.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2384\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2387\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2388\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2389\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2390\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2391\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2392\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2393\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2394\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2395\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2396\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2402\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2403\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2404\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2602\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2603\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://foreshadowattack.eu/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Technical Description\", \"Third Party Advisory\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201810-06\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180815-0001/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K95275140\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3740-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3740-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://usn.ubuntu.com/3742-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3742-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3823-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.debian.org/security/2018/dsa-4274\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.debian.org/security/2018/dsa-4279\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/982149\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.synology.com/support/security/Synology_SA_18_45\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-203\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-3620\",\"sourceIdentifier\":\"secure@intel.com\",\"published\":\"2018-08-14T19:29:00.793\",\"lastModified\":\"2024-11-21T04:05:47.007\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.\"},{\"lang\":\"es\",\"value\":\"Los sistemas con microprocesadores que emplean la ejecuci\u00f3n especulativa y traducciones de direcciones podr\u00eda permitir la divulgaci\u00f3n no autorizada de informaci\u00f3n que reside en la cach\u00e9 de datos L1 a un atacante con acceso de usuario local mediante un error de p\u00e1gina del terminal y un an\u00e1lisis de canal lateral.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N\",\"baseScore\":5.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.1,\"impactScore\":4.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:N/A:N\",\"baseScore\":4.7,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-203\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:330e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4229DB2-8BBC-49F8-87A8-2E7D56EFD310\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:330m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEBA7322-4D95-4E70-B6A5-E0D8F1B5D7EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:330um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0E91F46-D950-4894-BACF-05A70C7C6F7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:350m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E12B40B-5221-48A6-B2A6-D44CD5636BB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:370m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BCB77C9-ABE3-44A0-B377-7D7035E8A11F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:380m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D06639F5-5EE8-44F4-B48A-5694383154DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:380um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD9662C9-59D3-4B3E-A4DA-4F1EE16FC94B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:390m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"637C3687-FBCC-41A0-BFE6-823BAE45FB92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:530:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2350A197-193F-4B22-80E8-3275C97C78EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:540:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734C7A7E-ACCA-4B34-BF38-0FAED988CC6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:550:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D9ABAFC-B3B5-449D-A48E-2E978563EDE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:560:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99019EA0-6576-4CE7-B60A-975D418AA917\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2100:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E846AEF-751D-40AD-84B5-EFDC9CF23E2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2100t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB9DD909-B2AC-46BA-B057-D239D0773CAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2102:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54F5C355-FDFC-4E71-93AA-218389EF10E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2105:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0A1CA1E-971D-4F67-864E-2E772C1E736B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2115c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B5F8391-D974-49AC-8550-ADB3FA6C0535\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2120:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8302BF58-9E54-40DA-BCFE-59CA52C460D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2120t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECCDE9EF-037B-4650-8131-4D57BE141277\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2125:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47BA9DA8-F690-4E3C-AEF6-6A5C7BAA6F19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2130:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB8253DA-9A04-40D6-84C1-C682B4023D4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2310e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF6D175-85C3-4C72-AD9F-31B47EF43154\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2310m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A5FC594-2092-4240-9538-235BBE236DD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2312m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87D95F00-EA89-4FDE-991C-56636B8E0331\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2328m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32C40D38-F7F2-4A48-ADAA-6A8BBD6A1A00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2330e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4158561F-8270-42D1-91D8-E063CE7F5505\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2330m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF0DEA96-0202-41EB-BDC3-24E2FC4415B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2340ue:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8BACE1C-5D66-4FBC-8F86-30215A623A94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2348m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF707146-0D64-4F3A-AE22-956EA1CB32B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2350m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8118C3F9-0853-4E87-9E65-86E1398B2780\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2357m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A298501-C4D7-48D4-90F9-15AFA59DED48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2365m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEE1B07B-3D92-4D2D-8667-D902F002277F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2367m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F05CB19-1059-4C4D-BFD7-9F51A22A4F97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2370m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5588732F-7F1A-4C24-B35F-30532107FFDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2375m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A127DD5D-426D-4F24-A8C5-DC9DAC94B91C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:2377m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26EE0BBD-3982-4B0F-82F6-D58E077C75DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3110m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FAEEC918-EA25-4B38-B5C3-85899D3EBE6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3115c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"813965F4-3BDA-4478-8E6A-0FD52723B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3120m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C5EA2F4-F3EF-4305-B1A1-92F636ED688F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3120me:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04384319-EE8C-45B4-8BDD-414502E7C02D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3130m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C52528CE-4F31-4E5F-8255-E576B20F3043\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3210:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6C3F422-F865-4160-AA24-1DAFAE63729C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3217u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D034E7F-4D17-49D7-BDB2-90CB4C709B30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3217ue:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C18E6B4-E947-403B-80FB-7095420D482B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3220:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2814CC9F-E027-4C5A-93AF-84EA445E6C12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3220t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24A470C3-AAAA-4A6E-B738-FEB69DB78B9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3225:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1236944-4942-40E4-9BA1-029FEAE94BBC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3227u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"086CAB4B-A10A-4165-BC33-33CADCD23C0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3229y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1A6A1EB-B3AB-4CB4-827E-CCAAD783F8E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3240:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AAFB6B30-BFB0-4397-9E16-37D1A772E639\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3240t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFCB9D7B-7D0A-435D-8499-C16BE09E19FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3245:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64277594-9713-436B-8056-542CFA9F4CFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3250:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"589BB170-7CBA-4F28-99E3-9242B62E2918\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:3250t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91B9C4D9-DA09-4377-9DCD-225857BD9FA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4000m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03D0265F-840B-45A1-90BD-9ED8846A9F63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4005u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74BAC0EC-2B38-4553-A399-4BD5483C4753\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4010u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4477EBA6-F0A7-452B-96E8-BA788370CCA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4010y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1285D817-B5B8-4940-925D-FCDD24810AE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4012y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D289F7B4-27CD-4433-BB45-06AF98A59B7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4020y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00168903-6012-4414-87D1-2EE52AA6D78E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4025u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6AE8D524-577E-4994-8A4B-D15022C84D7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4030u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75977B0B-C44D-43BC-8D7A-AF966CDB1901\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4030y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE7F5D52-9F41-49A4-B941-E0D777203FF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4100e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52B5B3FD-5BEA-4DE8-B010-55FED1547167\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4100m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"167B1B04-5823-4038-A019-3975A3B447C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4100u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6C7A4EA-0B5E-47CD-8924-3B1B60EB4BE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4102e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BA096E0-5480-47CB-822B-D11D7E20F69F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4110e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30357469-0B8F-4385-A282-2F50181EA442\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4110m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BE70772-7796-4594-880A-6AAD046E4D8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4112e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A9E2F8D-2974-4833-9EC2-233CEE257C26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4120u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17EE3078-454F-48F8-B201-3847DB40D5C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4130:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE32C500-55C2-41A7-8621-14EBF793BF11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4130t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52D3DF52-501A-4656-98F1-8DD51D04F31F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4150:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EA603AD-6CF1-44B2-876D-6F1C0B7EF2C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4150t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09578301-CF39-4C24-951A-535743E277EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4158u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F4D14AA-7DBF-4B73-BDEF-6248EF5C0F7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4160:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A65F303-96C8-4884-8D6F-F439B86BA30C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4160t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E046105-9DF5-425F-A97E-16081D54613C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4170:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2987BCF-39E6-49B6-8DEE-963A38F12B07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4170t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7AEDE2B7-9AA2-4A14-8A02-9A2BFF0DDCBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4330:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AD92AD8-033A-4AAD-91E5-CB446CCE9732\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4330t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77E0E73A-F1B4-4E70-B9F1-EE97785B8891\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4330te:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61D6E3CC-79B1-4995-9A76-41683C7F254A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4340:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9CEB2B1-BD1A-4B89-8E03-4F90F04A0F0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4340te:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6FE5773D-3CD1-4E63-8983-E0105C46D185\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4350:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A7C307A-6576-4A0A-8F4E-0981C9EE2901\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4350t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18B3A53B-902C-46A5-8CE7-B55102703278\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4360:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB843479-729A-4E58-8027-0FC586F051AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4360t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AF5A233-1E77-49FD-AC2C-60D185481E28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4370:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18519CF2-B0DA-42DD-8A3E-9084298C210A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:4370t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"329D5FCF-7EC5-4471-906B-3619A180BD52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:5005u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0DD43EAA-F3A5-4748-9187-A6E6707ACD11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:5010u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6F3C14D-4BFC-4205-8781-95E6B28C83C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:5015u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20942AD8-ADB7-4A50-BDBE-DB36249F4F52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:5020u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EC6ED02-134B-4322-AB72-75A0AB22701E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:5157u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6FA74EEE-54CC-4F80-B1D3-99F7771335ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6006u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6B859F7-0373-4ADD-92B3-0FAB42FCF23C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6098p:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AAC76F31-00A5-4719-AA50-92F773919B3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6100:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49996F5A-51B2-4D4E-AE04-E98E093A76CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6100e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F8406B0-D1E5-4633-B17E-53DC99FE7622\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6100h:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D49435C-7C33-454B-9F43-9C10F28A28A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6100t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D17E1A0F-1150-4899-81BC-BE84E4EF5FA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6100te:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EADD98AE-BAB0-440D-AB9F-2D76BE5109E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6100u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED44A404-8548-4EDC-8928-4094D05A6A38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6102e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A6E4AA3-BEBC-4B14-9A52-A8F8B2954D64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6157u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D2AAD8F0-0D31-4806-8A88-A30E5BE43630\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6167u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8164EE5F-6ABA-4365-8718-2F98C2E57A0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6300:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7110AF9-A407-4EE2-9C46-E5F1E3638E9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6300t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A06696D-37F0-427D-BFC5-1606E7441C31\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:6320:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9F8A5FC-5EFE-42EC-A49B-D3A312FB5F6F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:8100:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68A76015-0A05-4EC7-B136-DC13B55D881F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3:8350k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C352DCE8-E8D9-40D3-AFE9-B5FB84F7ED33\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:430m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54464F6C-9B2D-46BA-AC44-506389F3EE0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:430um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FA11017-EA58-45EE-8408-FCCCF7183643\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:450m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A5098A5-E4E8-47E4-8CD0-F607FF0C0C90\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:460m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"442AD778-D56F-4C30-BBF8-749D6AAC4737\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:470um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF7D3F31-AF4D-4C50-8590-A763AAC7AF07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:480m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"445BFC2E-38FA-4130-8550-0866EC4EDA33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:520e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6DC2746-CE41-40C9-8CFA-23231BBCAE77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:520m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C3A8976-5E4D-490A-A87D-A47D1B2B903C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:520um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C8535E6-220E-4747-8992-45B6EAFC555C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:540m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7479B49-F484-4DF2-86CB-E52EE89FA238\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:540um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6D68512-746D-4E95-857B-13A0B6313C5E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:560m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4312BA84-F9A0-4BD4-8438-058E1E7D6C0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:560um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60E52DF5-C713-4BC4-B587-FF6BDA8509CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:580m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"304ADCAC-9E49-42BD-BC92-58D9B2AD52E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:650:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AB02172-B9A7-4801-88F2-98BF5843184A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:655k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5141380E-BD18-47C1-A84C-384BA821773D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:660:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AE6C49E-2359-4E44-9979-7D34F8460E35\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:661:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C004B75F-37AF-4E61-98F3-1B09A7062DDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:670:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7126D19-C6D9-43CB-8809-647B1A20E7DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:680:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CC98503-A80A-4114-8BF2-E016659BE84E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:750:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01E6F4A7-24BE-4AA0-9CDD-84FBC56FE9BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:750s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3821412D-B010-49C4-A7B4-6C5FB6C603B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:760:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A34CA5CC-9EB1-4063-8B9D-3F566C1EFF76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2300:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CEB5D2D-FF54-4BDB-9E9C-8C1B2719FC9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2310:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6AD5B51A-AEA0-4DA2-BA60-94A2D5605352\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2320:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F96C6CA0-434D-428F-B629-A971C2937628\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2380p:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"301AB72A-A6F2-42C8-A931-94EF2271443F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2390t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59414B5A-05B8-49AF-A197-2A31729DDB65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2400:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0BFDD380-692F-41D7-996F-F97FC74DC7CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2400s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49602828-2BFC-4571-9F05-6210FD263DF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2405s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87E03978-E16D-4A9B-8AE7-9F4F1171C14A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2410m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03096A9A-5758-47E6-81E2-BCFE847C41F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2430m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"150CC865-7975-45EC-BFF7-A94146442BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2435m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8FA1308-589B-432B-80F9-9A499D083ED5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2450m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6ED2453E-30E1-4620-BEC5-21B0083449E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2450p:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FE8DD05-D700-4F89-9B01-D489029DF7A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2467m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"050957CA-6191-4F9F-9D07-48B342B3B1B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2500:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DACBF998-8B11-45C7-9017-486AED4FAE6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2500k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9F2F3C4-FC94-414A-A208-913A43D57D75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2500s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"641152EC-F4B4-4E5E-B396-AC4CAAB805BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2500t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4911E332-B8BA-4336-A448-3F70D2BBB147\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2510e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"330EC403-3174-4543-9BBE-CEC0ABC1575D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2515e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EF585D0-507E-491E-9C3B-78EE26F2F070\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2520m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD00F7C6-6762-4DC9-9F6C-5EAC4ACB1C54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2537m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F5D885A-85C4-4A11-B061-61EFF6B6E329\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2540m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0502B59F-933C-4E25-A2EC-9296B197E139\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2550k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99D9C0A9-2DFF-4760-8FED-AC2DA7968E51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:2557m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B5A1BAEC-18BF-4607-BFB7-48102E75186A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3210m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D49ED138-F42D-4451-A350-0B2DD5AB9444\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3230m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5ED91472-90FC-4AC8-96D5-1550A8502411\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3317u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57CEEFA6-CEED-4CA3-8DDC-B6601D69FB7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3320m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FD25ECD-0605-4CD7-9DC5-294ACD7EF1B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3330:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2784E2AF-A5E5-4960-830C-B3EFB84043D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3330s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9112FA50-5527-4B20-80F5-2DE9E66D09F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3337u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73CE4E2E-B2BF-409E-B18C-D67DA810FE9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3339y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2B84D67-0B1D-4B74-BC85-AF8F933D8429\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3340:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BCA05A18-1523-4EED-9D2E-0A258A33F24F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3340m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C34E70EB-92F0-43F6-8883-FE422BE1A3FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3340s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78D301F1-20C2-4756-9A90-37F14835CE14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3350p:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2EEC8B5-1CAB-4FBE-BBA2-D2FFA3EF9489\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3360m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA63B803-4D48-42E8-A793-F92ABCB8BFC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3380m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"129DB9CB-E878-4856-A954-15FFE1428636\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3427u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"730DB4AA-FD7D-40C6-8D7F-19937832EF9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3437u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07E86978-4820-422A-8C7C-FF0697DAED05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3439y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A7A9DB5-F544-4FD8-A9CC-0BD6257516AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3450:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF813AD9-D296-4915-861C-8DE929E45FE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3450s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04A65469-083F-40B5-86C5-A2EAE5B2F00A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3470:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F1AA82E-BD86-40F5-B417-71DF6AF53A37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3470s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B71A6DB0-5EB0-4712-8480-CF427F521D33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3470t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8223D5A1-ADF1-43C6-AF91-EE5C413BCB37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3475s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DD69605-F52B-4623-921A-983A5A408ECA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3550:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1D5685F-6FFE-4A6A-9FF8-940C8DA36499\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3550s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B94062D9-8DDA-4B4A-B3B5-07F71F5B97E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3570:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3832D0A6-419D-4876-B5C4-920578F713F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3570k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1AA5C8A-83A8-4F96-9D7C-7A50ADDB2341\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3570s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"404E38E6-9EB3-41D0-97A7-DC579688BFB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3570t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40E4A921-AB28-47B7-B5A3-EB82193D15BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:3610me:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0357E48-2300-47B4-B9E5-9FE813A2FC09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4200h:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96CC28B6-57D1-4919-AA55-A262CC16AFE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4200m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EB4C54D-1265-425A-B507-E1099844875A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4200u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97362147-3A71-430D-9064-4435D45C3B8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4200y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89212CF3-4E99-4389-94CE-F4211DDCA01B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4202y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBEA4DA3-0AFB-4FCE-92DB-5B316775BB17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4210h:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"611C0A0A-1FA3-42F9-82E8-BFCB71A077DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4210m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36F027D9-DCB4-4A3D-8987-41F2941DBD45\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4210u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E23BCEC9-2BFB-4B41-9A7A-18B1347C6202\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4210y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4924CE39-A846-4DB4-9547-6322FC5AD6B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4220y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C9E2C9A-94A1-456B-90D5-54932DF64C22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4250u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC04C652-B2D8-4002-A50E-8AFE83204A25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4258u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10D413F0-CDBC-4A63-B9A7-9E7725BA1E83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4260u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"754A8826-59F7-4A71-B74B-737BE9C7DE4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4278u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FADB6BDA-6825-489B-AB39-7729BA45DFD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4288u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7913F57E-E600-4767-AF51-D045E1898E72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4300m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD3783F4-5A05-45AA-9791-A681011FD78C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4300u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01E3114D-31D2-4DBF-A664-F4049D8B6266\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4300y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8EE6578-981D-470C-BB24-4960B3CB1478\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4302y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3320D50-C5C9-4D75-BF1A-5BB7BCBFE2BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4308u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EE59839-8EB9-47FE-88E2-F0D54BE787A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4310m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75694A3D-080A-4AA7-97DF-5A5833C9D9F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4310u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19C5E27D-BBAB-4395-8FC6-8E3D4FB9A1EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4330m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E996176-3DEA-46E6-93B7-9C0DF32B59D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4340m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4417007D-126A-478B-87EA-039D088A4515\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4350u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F78C2825-F6A3-4188-9D25-59EAEC8A7B0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4360u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF2FA85D-B117-410D-B247-8C5A3479319A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4400e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A041D27-132C-4B15-976F-1750C039A89F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4402e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D495E06-BF2B-4C5A-881D-94C93CD2BA2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4402ec:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C31DFB8-8D8C-47D6-AAFF-BAE829A3D965\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4410e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"088BC395-06D5-4156-85EB-63C4A9552898\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4422e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33A220A2-A6D2-46A7-B168-607400EEDCE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4430:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E79232F-7196-440B-82D4-165885251232\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4430s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED866954-77AB-4CA8-8AED-4252C595FC4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4440:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28A1F516-B180-45D4-8EB1-754B7497CB2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4440s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36758A04-64D3-4150-A004-CF042FA31CD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4460:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E01752E-F1DD-400A-A917-216CAF15B0F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4460s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD47EC58-F776-4F59-8F15-4B208904CF4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4460t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3781F4-2123-4FA1-8AF5-D0D1E6C1A5B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4570:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"94565E35-8A58-4CB6-A489-C796DCB97FC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4570r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49964D35-5323-4412-BD54-661630F9A8CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4570s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0A37E7D-1BF6-4A2A-BF52-5F0EC4B4F341\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4570t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0F66468-87D0-41FC-934B-5924BE2956CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4570te:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E0F93E1-4607-4DF4-AC6E-4B7254D4A8DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4590:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45C0D99E-443E-4AB1-A07A-900A09FE177E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4590s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6D0FD76-C1FB-43D0-8511-FC0BA6DA7960\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4590t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9DAEE52-09C3-4A09-9958-9D6807B2700B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4670:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B97690D4-E814-4D40-B170-BE56D7AE2C1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4670k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89804F2C-D32D-4444-ABEA-5B241153D096\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4670r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AAAAF9C-B29B-4020-BAFF-C87B1A08294A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4670s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECE60E1E-AB8D-46E4-A779-A54F2D20B5D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4670t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB958A28-7C9A-4BD0-B002-4E1A65CDB0A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4690:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C27B318-2AC1-423D-B0C8-583BB1800D5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4690k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E58E3D0-1154-4B13-BA16-67CE67DF0637\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4690s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32D2ACB3-B906-4944-A021-03C4645965BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:4690t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FFF834A-D7F0-4E48-AD3D-DD0BCE6DEC0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5200u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E1A41BA-A1D6-484A-BAD2-68DF85598354\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5250u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11260C9D-69A9-4D81-9CCF-2E116DD75F7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5257u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C020F06-FD27-46E3-A48F-3F60F33BB969\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5287u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03C74F10-6A7F-4F68-8A34-E981E1760DE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5300u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24741B98-8D0E-4307-AAEF-A14B2531DCA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5350h:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D4FA4BA-4304-4A70-9F86-120F2A3D8148\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5350u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"367FC8BA-F046-4264-A049-49E933E7698F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5575r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE9B68D3-1DFB-4468-85C4-AC13E6CBC111\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5675c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C966A016-B650-44D9-B8C4-1ED50AB318DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:5675r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC448FF0-6D3F-4609-864B-4191905EE2B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6200u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FC246FE-4CA6-4B2D-83C3-D50A386C24A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6260u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"758A14DB-1BAF-442A-BA7C-5E9C67847BEA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6267u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61309100-CFA7-4607-A236-8910838AA057\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6287u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82D76265-7BD0-4C51-AE77-22B22524DE81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6300hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE38B195-BB8D-4747-881D-E8033760B4C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6300u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AA8BE76-168D-48A3-8DF6-E91F44600408\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6350hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B656975-5D71-4712-9820-BDB7BC248AFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6360u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA045267-114D-4587-B6D7-E273C28DC9B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6400:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77018415-E122-406E-896D-1BC6CF790BE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6400t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3ADF37F1-546B-4EF0-8DEC-DC3B9F5309FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6402p:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7469256-1A64-46FF-8F5A-A8E9E3CF5BE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6440eq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F9069B9-9FE3-4AD5-9A8E-55C0F73BD756\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6440hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4E1C012-3E05-44DB-B6D2-BFD619C034B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6442eq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15D689D6-8594-42F2-8EEF-DCAEBA885A67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6500:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6446000-0494-4DC5-ABAA-F20A44546068\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6500t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99B94EEC-6690-45D0-B086-F4A5B25C25CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6500te:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B767B6E-B3E6-4424-97A6-89A7E7EB0EEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6585r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"832AB3CD-E3A1-4CCB-A210-287973563D0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6600:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A26C0CC-68AD-40F5-96B8-87E6C643F6F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6600k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99C4221A-9994-43B3-9C7A-E13815A50A10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6600t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20070B1D-B91C-40BA-A9D8-E80170A2933F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:6685r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A70129C9-371F-4542-A388-C095869E593A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:8250u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C4DE25F-168A-4C67-8B66-09F61F072BD4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:8350u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58157F24-D89E-4552-8CE6-2F01E98BD1E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:8400:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC7FFD78-1E1C-4246-BBD3-73FAC06AA46B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5:8600k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45ACBBEA-EC95-4F3E-B585-893DB6D21A0F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7y75:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7DEC55DF-1950-45E5-A5F2-B5604AFA1CBD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:610e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6A5EC79-1B21-4BB3-8791-73507BC8D4DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:620le:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCB4AFC3-FE30-4F46-ADC1-D03EB14E757D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:620lm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0387587-AAB6-4284-8516-4DA3E3582D30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:620m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A238C975-9196-449F-9C15-ABB2E9FD1D06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:620ue:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F17F4A5-120B-4E00-97C8-8A85841ACBC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:620um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2537F047-64C9-4E73-B82C-310253184183\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:640lm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A55857C-649D-46CE-AEDA-6E553E554FC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:640m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BA4892D-AFDF-4441-821E-5EBF7F64C9F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:640um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"327E06A3-7F0E-4498-8811-10C8D15398FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:660lm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1624E6D6-858E-4085-B0B9-362B819EFD88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:660ue:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50D61F4A-40F0-477C-8326-7359D3626E77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:660um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1455B4DE-7F1C-4CF2-AE02-2EDD20025D62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:680um:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B215788-860B-46CD-9A08-43AFF98FAEAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:720qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B92FAD5-CA6E-48F7-9613-3A4CE90F5F54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:740qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4EB132B-000C-4A17-AFB3-19F40A73D2CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:820qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C4815AE-B635-4545-83C2-5EC4E0128337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:840qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0046C06-E3E6-4674-A4D1-332DD29D9552\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:860:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C191851-3DC3-41C7-AD89-81F091CCC83A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:860s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21126922-8E81-47F4-82D4-CBCDDACEC4FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:870:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"209E18B0-BBB5-4C65-B336-44340F7740DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:870s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C867C0B8-91A4-482A-B7DD-54AB9599AE52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:875k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30F03843-8A51-4CE1-BE6C-994BDE3A8F97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:880:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09854948-2657-4261-A32A-0523058F072E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:920:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D13904A5-266D-481C-A42A-734C3823A238\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:920xm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ACC82FCB-0541-45C4-8B7E-CB612D7F702A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:930:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C18BD84-5E9C-4C9E-B0AA-2CEB0D7A58C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:940:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F5ABC7E-C4E0-4850-A1E6-07EBCF4A87D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:940xm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"501E9355-0CDD-4951-BCC3-47962788BCCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:950:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3D976D9-62F0-43C3-8359-E51E26B6CD87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:960:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02AFBCD0-9B4B-4CA3-8FA9-D8B6ECB24894\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:965:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64ADE9AF-196F-4E0B-BC66-7DE0183F9032\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:970:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C90CCA48-1705-4564-AAF9-271201BD5113\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:975:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B82BAFF-17F5-465C-8032-67D5ECAB2921\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:980:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F694FEC-B97D-4BDA-ADFA-751E8BFB7CD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:980x:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F831371E-7437-48D7-8281-1F406215041B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:990x:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC4F06B5-615A-464A-A0C4-7AABEE8530CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2600:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"92AF503A-A2B1-4FC3-858B-264049ADF0F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2600k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E702C7EC-B1D9-4BDF-B334-2004CD76B52B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2600s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E39F31D6-DC4B-46FE-BE5D-EA612D915A96\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2610ue:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51CB8036-5F36-4CD4-9B3E-D2401F2E64F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2617m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9849BA3-3990-4E30-B99B-ADD043314CDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2620m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A20FB18A-D3DA-4DE9-BEFF-75B7AB9B9A55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2629m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A67CD6F-5E4F-4E69-A2A9-A4033DCE08EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2630qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0A22E92-1EA7-45D9-AC86-EC3D9664C294\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2635qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7FA2911-6561-47BF-BEE8-DDA31642C346\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2637m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FA6CA23-6F2B-44D5-B2DA-4F142BA3E48A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2640m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F829DED-4D92-401A-BD80-C070DE57FC7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2649m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F560575C-FD8E-485D-B50A-572604BBE903\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2655le:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6ED8C51B-AE59-46DC-85F9-6D3B2891CB3F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2657m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A38D00A-B9DC-44DF-8247-70355FF9A6EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2670qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"381EFC43-D5D9-4D10-90BE-4C333A9BA074\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2675qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBEDED18-2755-4C55-A1A1-04B4D5F40276\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2677m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F04B57EC-0731-40C8-939F-1C686A65A0FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2700k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AB301FB-EB3E-4F5F-868D-5B66CC7E1E6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2710qe:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE1D28F9-B135-441B-A9BF-792DD356E374\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2715qe:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D01CE3E-5C89-4FC0-9097-CAC483ACD441\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2720qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BDD55C4-AFCD-4DF2-921C-DDC1D7556DA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2760qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F52334F-BE6A-4FD4-9F63-AE9BB017115B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2820qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7C9BCC3-B9A6-4195-BF2F-E7BBCE8DC269\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2860qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A4DFFA7-AA0E-4D7E-97B8-13389FD47D4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2920xm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"707F6671-57AC-4DF4-8024-444502E5C92E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:2960xm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C1FCE07-F9E8-4B14-95CE-01784D472128\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3517u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C208711F-FC06-46C8-8849-27054DC1B264\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3517ue:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25AB8041-F201-4BB3-AAD9-199B06697DF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3520m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D75C474C-D5EF-42D6-9B2A-A504BEFCB982\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3537u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F566CD3-3649-492B-B0AB-A107E51675B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3540m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB9F3D74-AE72-4FC5-83E9-890781AF3093\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3555le:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E8EA6A7-4AB8-487E-B5DD-9989CC5F1CD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3610qe:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF63DDC8-A0C1-482B-92F2-CF6135E8C2A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3610qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C69918C6-7AAD-4AA5-AB72-C275367B1008\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3612qe:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06155B0B-A5AD-4A82-8C02-D264981687A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3612qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F76C19A4-FA26-432A-9443-9F92B2A946EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3615qe:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99BEE9BE-E49A-489B-B333-95D0993F8FA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3615qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7427A678-EC47-4030-B905-619DD95F5A82\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3630qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86749716-1C9F-4C2A-B2A7-E62DEC10EA30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3632qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD000B53-06DA-4ED4-B0EE-9CB201B75C8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3635qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8424463-C329-4BAA-8AA1-25CD8B63292E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3667u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52727E62-0048-4C56-BC8C-B3450D257B21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3687u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D8223AA-F077-45FD-A7E3-3C2C1A8F6E91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3689y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FAA34B50-2330-4D77-BF1A-6F05F3EF222C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3720qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6421F69-1076-43D2-B273-DE80FB2D5F72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3740qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1EDA9E2-CFE7-4917-BE48-A83208BDF0F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3770:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A34E7FC-93A4-45F2-A7B6-4A8ABFCAB0F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3770k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E611EDD-D44C-4311-B681-431D7C574528\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3770s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5E1B6AA-2F9A-43A8-9147-2BD9474E54C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3770t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1886D007-85B6-4E5A-968D-A1FD476A08A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3820qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDDDCB65-4404-49BC-9515-ECECD58A667F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:3840qm:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B8D3E00-64C3-407A-9B00-8B6E383F73FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4500u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB1B00A1-9C15-47C2-9F57-66586DEACC7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4510u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB5BF932-459F-4DD2-B160-5FE0371C7D83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4550u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A58ACE96-F1BE-4261-8F94-FC3C6E7C7561\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4558u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"783D6EA7-C016-4314-A87B-4FED1DC7114B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4578u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7AD0176F-FFAE-4A85-9327-CE72FE059E90\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4600m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A56970C7-F8D3-41B2-A78B-0C7F4A2A4E0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4600u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26D4CE1F-86C8-4E48-9146-9DB57BF540FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4610m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB7F9D65-5537-4C25-B02B-2393F60D1299\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4610y:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F09C8A92-820D-4572-A797-180E17A7DEB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4650u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA7D77A2-0D9A-4D0D-B0DC-152757917BE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4700ec:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A07D3F1A-16CE-461F-A2F4-80FE5F841CB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4700eq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C04557A-C508-4FAD-A535-1C0AEFF08075\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4700hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6AFAE489-6679-4705-BF9C-BB6D385A1DC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4700mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"429A99C8-BC55-4887-893C-7124C1A5DB08\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4702ec:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3A2B709-CC19-4116-A5BE-5DB5C8B45A12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4702hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D79DAC74-1F28-4EC8-B417-3FAFFB74C4BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4702mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F1F1377-6220-43FB-BEF9-BAA7B0158147\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4710hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18422CA8-3000-46B1-9065-2369E6B0BE16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4710mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D558C66-E80E-4FC7-A0DF-485466390C46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4712hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E23EA9AE-9E70-47B5-AD9B-0DF13A0939E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4712mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"860F22F6-4C87-47C5-965E-02A1AFF41A72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4720hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19A2CA86-BFA8-4C78-987D-AD26F32622F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4722hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEF64E0A-CDB0-427E-A96F-095EFEBA0A3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4750hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"425F6D34-EE60-464B-8EA6-8116EDAA1219\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4760hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEB9F657-1239-4424-A2E8-F8BD98C0095E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4765t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F631403C-0A67-42CB-815C-133EB87E0C95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4770:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A4A5A57-B1A2-4BBA-AC36-7EA7DF9CDE06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4770hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0453C0EA-BA67-49D5-964F-35493F97D905\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4770k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D4D237E-ACB7-4382-AF5B-D27E634BF867\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4770r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B5461EB2-2958-4923-86AF-C74D449120B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4770s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45C22141-E698-4E38-AF50-9CE04C1168FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4770t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49D0E470-427D-4A68-AFD2-982A4F7CE2D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4770te:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43AB50F3-14AC-44BD-B7F0-A683C5FD1A3F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4771:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"713C4B7A-C38A-4818-A258-D07DEDEC906E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4785t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C59740BE-FC30-4400-B978-1DB41282971C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4790:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"839728F0-5F23-462F-B493-C37EE4C874F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4790k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F1B47DA-BA53-4D7A-9B5B-582238D5E99A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4790s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D452F1BF-1FA5-463C-8F13-6357509FB5D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4790t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF6D1F4C-B396-468C-BA32-9367A68C95DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4800mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B76A812F-D77A-49C8-B7A5-0C08258D4BBD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4810mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E001AAB-07EC-47BF-BDE9-BB927872781D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4850hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1DF11F5-61E8-4A98-86C8-49D6B3224FCC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4860hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AED153E7-99A2-4C02-B81B-C3DDF8FAE1A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4870hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D024802A-EA60-4D9B-B04C-027A0703EABD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4900mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA731F3C-1F04-4EE2-83EC-9486F5032903\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4910mq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"544A59F6-E731-43C8-8455-69256933E71D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4950hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"624258EE-7FFF-4432-9B6D-4D60AA73CD9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4960hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69A2701A-35A8-4268-B9CF-40BA3219373B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:4980hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15E671F6-8DED-4735-BE97-58A60E5B5C13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5500u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FC68B2A-8570-4311-BB60-49DBBDAF7430\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5550u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9826FA02-937E-4323-B9D5-8AE059ADBE95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5557u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B8630BB-48AA-4688-A6F0-212C1BB4D14C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5600u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AC98D35-D7D5-4C24-B47E-EDE2A80B2B9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5650u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2F8ABCB-12C3-4C45-844E-B07F77DA2DE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5700eq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"326105AC-3926-437E-8AFF-916960107050\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5700hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"866E1275-7541-4B80-8FDF-53246A204C15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5750hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E190929D-D3CC-46E1-A903-0848829061DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5775c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81E4EBCB-B660-4F6A-AD73-81B9D8964162\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5775r:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55D58CC5-CB46-464D-93B8-6AD5A19AF097\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5850eq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16541D3E-EBBD-4D92-96D8-F169733377AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5850hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F08D257-F570-4D39-A6E8-0F60E55472E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:5950hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C20ED667-2BFB-41C7-82BA-9F0C0044DA08\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7500u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6158ED8A-007E-48B7-99BF-8BA03BF584BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7560u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBA7096A-F321-49A0-911A-F9683ABE6E6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7567u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A471395-7F8F-4BA5-962D-4D8F271FAB47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7600u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9484380-92B9-44DB-8E20-DC8DE02D1CA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7660u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8010808D-805D-4CA3-9EA2-55EB1E57964C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7700:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9716FE9F-A056-42A3-A241-F2FE37A6386A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7700hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F73422A3-ECA0-4C41-9AA5-CF7D77885CF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7700k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A96A5AF-C9EF-4DED-AE25-4540A2B02915\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7700t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5115B12-053A-4866-A833-D6EC88D8F93E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7820eq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5619D4D-9685-4595-8A5F-A18273FE4213\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7820hk:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B77E00E7-0EA4-4E32-A693-0E0F66BA4C57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7820hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAA3457E-7E1A-4878-9752-79382E954A66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:7920hq:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68630C63-4457-4E12-B7BD-AD456B237FC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:8550u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6FB5695-2950-4CEC-81B4-FD280F835330\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:8650u:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F340AF8-508F-449D-9AFA-4E55F069B4F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:8700:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E944410E-D674-4141-B50C-9F55090325FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7:8700k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6438E07-0AC0-4BF9-B0F2-9072CA9639D6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m:5y10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5079AA70-C864-4AE2-809C-52B50632F2B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m:5y10a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D124BCB-D8C3-49F5-B05C-E09B3CEBEBCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m:5y10c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A86291B-C986-4320-BCEF-9F5AD8B309D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m:5y31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1227659F-1393-4189-978B-CC3DC53BF407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m:5y51:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C2DB843-638F-41EF-B486-409318AA2DE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m:5y70:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0004D8A-A186-4DA2-A7AB-18A6456438FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m:5y71:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75B6BE9F-F113-4976-951D-53F2E183A95A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m3:6y30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEB005F1-9719-4985-B9D9-2140C962ADD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m3:7y30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A94D0C1B-F30F-4724-915E-192C53FAE58A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m3:7y32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F247860-1D2C-415C-AFBD-26BD875AAF02\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m5:6y54:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9697EDCD-A742-4AC6-876E-1080AD684207\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m5:6y57:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E73924A-875B-44D0-8F7C-A822B0488126\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m7:6y75:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03751B92-EE07-4F16-A476-BD25561810BC\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF71B61-A595-476B-B949-1A0FBDB360A6\"}]}]}],\"references\":[{\"url\":\"http://support.lenovo.com/us/en/solutions/LEN-24163\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105080\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041451\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.vmware.com/security/advisories/VMSA-2018-0021.html\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://xenbits.xen.org/xsa/advisory-273.html\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2384\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2387\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2388\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2389\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2390\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2391\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2392\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2393\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2394\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2395\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2396\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2402\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2403\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2404\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2602\",\"source\":\"secure@intel.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2603\",\"source\":\"secure@intel.com\"},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf\",\"source\":\"secure@intel.com\"},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf\",\"source\":\"secure@intel.com\"},{\"url\":\"https://foreshadowattack.eu/\",\"source\":\"secure@intel.com\",\"tags\":[\"Technical Description\",\"Third Party Advisory\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"secure@intel.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html\",\"source\":\"secure@intel.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html\",\"source\":\"secure@intel.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/\",\"source\":\"secure@intel.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/\",\"source\":\"secure@intel.com\"},{\"url\":\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018\",\"source\":\"secure@intel.com\"},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201810-06\",\"source\":\"secure@intel.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20180815-0001/\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault\",\"source\":\"secure@intel.com\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K95275140\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3740-1/\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3740-2/\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-1/\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-2/\",\"source\":\"secure@intel.com\"},{\"url\":\"https://usn.ubuntu.com/3742-1/\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3742-2/\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3823-1/\",\"source\":\"secure@intel.com\"},{\"url\":\"https://www.debian.org/security/2018/dsa-4274\",\"source\":\"secure@intel.com\"},{\"url\":\"https://www.debian.org/security/2018/dsa-4279\",\"source\":\"secure@intel.com\"},{\"url\":\"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html\",\"source\":\"secure@intel.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/982149\",\"source\":\"secure@intel.com\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"secure@intel.com\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"secure@intel.com\"},{\"url\":\"https://www.synology.com/support/security/Synology_SA_18_45\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://support.lenovo.com/us/en/solutions/LEN-24163\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105080\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041451\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.vmware.com/security/advisories/VMSA-2018-0021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://xenbits.xen.org/xsa/advisory-273.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2384\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2387\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2388\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2389\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2390\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2391\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2392\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2393\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2394\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2395\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2396\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2402\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2403\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2404\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2602\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2603\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://foreshadowattack.eu/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Technical Description\",\"Third Party Advisory\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201810-06\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20180815-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K95275140\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03874en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3740-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3740-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/3742-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3742-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3823-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2018/dsa-4274\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2018/dsa-4279\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/982149\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.synology.com/support/security/Synology_SA_18_45\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
RHSA-2018_2393
Vulnerability from csaf_redhat - Published: 2018-08-14 20:19 - Updated: 2024-11-22 12:09Summary
Red Hat Security Advisory: kernel security update
Severity
Important
Notes
Topic: An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
* kernel: kvm: vmx: host GDT limit corruption (CVE-2018-10901)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Vegard Nossum (Oracle Corporation) for reporting CVE-2018-10901.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host's userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
23 references
Acknowledgments
Intel.com
Intel OSSIRT
Oracle Corporation
Vegard Nossum
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\n* kernel: kvm: vmx: host GDT limit corruption (CVE-2018-10901)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Vegard Nossum (Oracle Corporation) for reporting CVE-2018-10901.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2393",
"url": "https://access.redhat.com/errata/RHSA-2018:2393"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "1601849",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601849"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2393.json"
}
],
"title": "Red Hat Security Advisory: kernel security update",
"tracking": {
"current_release_date": "2024-11-22T12:09:30+00:00",
"generator": {
"date": "2024-11-22T12:09:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2393",
"initial_release_date": "2018-08-14T20:19:15+00:00",
"revision_history": [
{
"date": "2018-08-14T20:19:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-14T20:19:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T12:09:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "python-perf-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "python-perf-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "python-perf-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "perf-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "perf-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.32-431.91.3.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.32-431.91.3.el6.x86_64",
"product": {
"name": "kernel-0:2.6.32-431.91.3.el6.x86_64",
"product_id": "kernel-0:2.6.32-431.91.3.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.32-431.91.3.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:2.6.32-431.91.3.el6.src",
"product": {
"name": "kernel-0:2.6.32-431.91.3.el6.src",
"product_id": "kernel-0:2.6.32-431.91.3.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.32-431.91.3.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"product": {
"name": "kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"product_id": "kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@2.6.32-431.91.3.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"product": {
"name": "kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"product_id": "kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-431.91.3.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"product": {
"name": "kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"product_id": "kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@2.6.32-431.91.3.el6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-431.91.3.el6.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src"
},
"product_reference": "kernel-0:2.6.32-431.91.3.el6.src",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch"
},
"product_reference": "kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.32-431.91.3.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch"
},
"product_reference": "kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-firmware-0:2.6.32-431.91.3.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch"
},
"product_reference": "kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "perf-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "python-perf-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-431.91.3.el6.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src"
},
"product_reference": "kernel-0:2.6.32-431.91.3.el6.src",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch"
},
"product_reference": "kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.32-431.91.3.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch"
},
"product_reference": "kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-firmware-0:2.6.32-431.91.3.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch"
},
"product_reference": "kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "perf-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "python-perf-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
},
"product_reference": "python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:19:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2393"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:19:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2393"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Vegard Nossum"
],
"organization": "Oracle Corporation"
}
],
"cve": "CVE-2018-10901",
"cwe": {
"id": "CWE-665",
"name": "Improper Initialization"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1601849"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Linux kernel\u0027s KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host\u0027s userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: vmx: host GDT limit corruption",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10901"
},
{
"category": "external",
"summary": "RHBZ#1601849",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601849"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10901",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10901"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10901",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10901"
}
],
"release_date": "2010-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:19:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2393"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.src",
"6Server-optional-6.5.AUS:kernel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.91.3.el6.noarch",
"6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.91.3.el6.x86_64",
"6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.91.3.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: kvm: vmx: host GDT limit corruption"
}
]
}
RHSA-2018_2394
Vulnerability from csaf_redhat - Published: 2018-08-14 20:18 - Updated: 2024-11-22 12:09Summary
Red Hat Security Advisory: kernel security update
Severity
Important
Notes
Topic: An update for kernel is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639)
* kernel: kvm: vmx: host GDT limit corruption (CVE-2018-10901)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646; Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting CVE-2018-3639; and Vegard Nossum (Oracle Corporation) for reporting CVE-2018-10901.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host's userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges.
7.8 (High)
Affected products
Fixed
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
34 references
Acknowledgments
Intel.com
Intel OSSIRT
Google Project Zero
Jann Horn
Microsoft Security Response Center
Ken Johnson
Oracle Corporation
Vegard Nossum
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\n* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load \u0026 Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639)\n\n* kernel: kvm: vmx: host GDT limit corruption (CVE-2018-10901)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646; Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting CVE-2018-3639; and Vegard Nossum (Oracle Corporation) for reporting CVE-2018-10901.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2394",
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/ssbd",
"url": "https://access.redhat.com/security/vulnerabilities/ssbd"
},
{
"category": "external",
"summary": "1566890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1566890"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "1601849",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601849"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2394.json"
}
],
"title": "Red Hat Security Advisory: kernel security update",
"tracking": {
"current_release_date": "2024-11-22T12:09:13+00:00",
"generator": {
"date": "2024-11-22T12:09:13+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2394",
"initial_release_date": "2018-08-14T20:18:50+00:00",
"revision_history": [
{
"date": "2018-08-14T20:18:50+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-14T20:18:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T12:09:13+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.4::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "python-perf-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "python-perf-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-358.91.4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:2.6.32-358.91.4.el6.x86_64",
"product": {
"name": "perf-0:2.6.32-358.91.4.el6.x86_64",
"product_id": "perf-0:2.6.32-358.91.4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@2.6.32-358.91.4.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:2.6.32-358.91.4.el6.src",
"product": {
"name": "kernel-0:2.6.32-358.91.4.el6.src",
"product_id": "kernel-0:2.6.32-358.91.4.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.32-358.91.4.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"product": {
"name": "kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"product_id": "kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@2.6.32-358.91.4.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"product": {
"name": "kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"product_id": "kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-358.91.4.el6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-358.91.4.el6.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src"
},
"product_reference": "kernel-0:2.6.32-358.91.4.el6.src",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.32-358.91.4.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch"
},
"product_reference": "kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-firmware-0:2.6.32-358.91.4.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch"
},
"product_reference": "kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "perf-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "python-perf-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-358.91.4.el6.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src"
},
"product_reference": "kernel-0:2.6.32-358.91.4.el6.src",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.32-358.91.4.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch"
},
"product_reference": "kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-firmware-0:2.6.32-358.91.4.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch"
},
"product_reference": "kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "perf-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "python-perf-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
},
"product_reference": "python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:18:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Jann Horn"
],
"organization": "Google Project Zero"
},
{
"names": [
"Ken Johnson"
],
"organization": "Microsoft Security Response Center"
}
],
"cve": "CVE-2018-3639",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1566890"
}
],
"notes": [
{
"category": "description",
"text": "An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load \u0026 Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: speculative store bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/security/vulnerabilities/ssbd",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3639"
},
{
"category": "external",
"summary": "RHBZ#1566890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1566890"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3639"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/ssbd",
"url": "https://access.redhat.com/security/vulnerabilities/ssbd"
},
{
"category": "external",
"summary": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1528",
"url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1528"
},
{
"category": "external",
"summary": "https://software.intel.com/sites/default/files/managed/b9/f9/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf",
"url": "https://software.intel.com/sites/default/files/managed/b9/f9/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf"
},
{
"category": "external",
"summary": "https://software.intel.com/sites/default/files/managed/c5/63/336996-Speculative-Execution-Side-Channel-Mitigations.pdf",
"url": "https://software.intel.com/sites/default/files/managed/c5/63/336996-Speculative-Execution-Side-Channel-Mitigations.pdf"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html"
}
],
"release_date": "2018-05-21T21:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:18:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "hw: cpu: speculative store bypass"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:18:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Vegard Nossum"
],
"organization": "Oracle Corporation"
}
],
"cve": "CVE-2018-10901",
"cwe": {
"id": "CWE-665",
"name": "Improper Initialization"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1601849"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Linux kernel\u0027s KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host\u0027s userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: vmx: host GDT limit corruption",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10901"
},
{
"category": "external",
"summary": "RHBZ#1601849",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601849"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10901",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10901"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10901",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10901"
}
],
"release_date": "2010-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:18:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2394"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.src",
"6Server-optional-6.4.AUS:kernel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.91.4.el6.noarch",
"6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.91.4.el6.x86_64",
"6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.91.4.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: kvm: vmx: host GDT limit corruption"
}
]
}
RHSA-2018_2395
Vulnerability from csaf_redhat - Published: 2018-08-14 20:23 - Updated: 2024-11-15 03:05Summary
Red Hat Security Advisory: kernel-rt security and bug fix update
Severity
Important
Notes
Topic: An update for kernel-rt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions past bounds check. The flaw relies on the presence of a precisely-defined instruction sequence in the privileged code and the fact that memory writes occur to an address which depends on the untrusted value. Such writes cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to influence speculative execution and/or read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3693)
* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)
* kernel: crypto: privilege escalation in skcipher_recvmsg function (CVE-2017-13215)
* kernel: mm: use-after-free in do_get_mempolicy function allows local DoS or other unspecified impact (CVE-2018-10675)
* kernel: race condition in snd_seq_write() may lead to UAF or OOB access (CVE-2018-7566)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646; Vladimir Kiriansky (MIT) and Carl Waldspurger (Carl Waldspurger Consulting) for reporting CVE-2018-3693; and Juha-Matti Tilli (Aalto University, Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390.
Bug Fix(es):
* The kernel-rt packages have been upgraded to the 3.10.0-862.10.2 source tree, which provides a number of bug fixes over the previous version. (BZ#1594915)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the Linux kernel's skcipher component, which affects the skcipher_recvmsg function. Attackers using a specific input can lead to a privilege escalation.
5.3 (Medium)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions past bounds check. The flaw relies on the presence of a precisely-defined instruction sequence in the privileged code and the fact that memory writes occur to an address which depends on the untrusted value. Such writes cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to influence speculative execution and/or read privileged memory by conducting targeted cache side-channel attacks.
5.9 (Medium)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.
7.5 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
ALSA sequencer core initializes the event pool on demand by invoking snd_seq_pool_init() when the first write happens and the pool is empty. A user can reset the pool size manually via ioctl concurrently, and this may lead to UAF or out-of-bound access.
6.1 (Medium)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The do_get_mempolicy() function in mm/mempolicy.c in the Linux kernel allows local users to hit a use-after-free bug via crafted system calls and thus cause a denial of service (DoS) or possibly have unspecified other impact. Due to the nature of the flaw, privilege escalation cannot be fully ruled out.
5.5 (Medium)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
51 references
Acknowledgments
Intel.com
Intel OSSIRT
Carl Waldspurger Consulting
Carl Waldspurger
MIT
Vladimir Kiriansky
Aalto University - Department of Communications and Networking and Nokia Bell Labs
Juha-Matti Tilli
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\n* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions past bounds check. The flaw relies on the presence of a precisely-defined instruction sequence in the privileged code and the fact that memory writes occur to an address which depends on the untrusted value. Such writes cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to influence speculative execution and/or read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3693)\n\n* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)\n\n* kernel: crypto: privilege escalation in skcipher_recvmsg function (CVE-2017-13215)\n\n* kernel: mm: use-after-free in do_get_mempolicy function allows local DoS or other unspecified impact (CVE-2018-10675)\n\n* kernel: race condition in snd_seq_write() may lead to UAF or OOB access (CVE-2018-7566)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646; Vladimir Kiriansky (MIT) and Carl Waldspurger (Carl Waldspurger Consulting) for reporting CVE-2018-3693; and Juha-Matti Tilli (Aalto University, Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390.\n\nBug Fix(es):\n\n* The kernel-rt packages have been upgraded to the 3.10.0-862.10.2 source tree, which provides a number of bug fixes over the previous version. (BZ#1594915)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2395",
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "1535173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535173"
},
{
"category": "external",
"summary": "1550142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1550142"
},
{
"category": "external",
"summary": "1575065",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1575065"
},
{
"category": "external",
"summary": "1581650",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581650"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "1594915",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1594915"
},
{
"category": "external",
"summary": "1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2395.json"
}
],
"title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
"tracking": {
"current_release_date": "2024-11-15T03:05:48+00:00",
"generator": {
"date": "2024-11-15T03:05:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2395",
"initial_release_date": "2018-08-14T20:23:19+00:00",
"revision_history": [
{
"date": "2018-08-14T20:23:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-14T20:23:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T03:05:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_rt:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Realtime (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_rt:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace-devel@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm-debuginfo@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace-kvm@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace-kvm-debuginfo@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product": {
"name": "kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_id": "kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm-debuginfo@3.10.0-862.11.6.rt56.819.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"product": {
"name": "kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"product_id": "kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-doc@3.10.0-862.11.6.rt56.819.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"product": {
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"product_id": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@3.10.0-862.11.6.rt56.819.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src"
},
"product_reference": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch"
},
"product_reference": "kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
"product_id": "7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-NFV-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src"
},
"product_reference": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch"
},
"product_reference": "kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
"product_id": "7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
},
"product_reference": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"relates_to_product_reference": "7Server-RT-7.5.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-13215",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-01-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535173"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s skcipher component, which affects the skcipher_recvmsg function. Attackers using a specific input can lead to a privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: crypto: privilege escalation in skcipher_recvmsg function",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 and 6, and kernel-alt packages.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7, MRG-2 and real-time kernels.\n\nFuture Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-13215"
},
{
"category": "external",
"summary": "RHBZ#1535173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535173"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-13215",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-13215"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-13215",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13215"
}
],
"release_date": "2018-01-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:23:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: crypto: privilege escalation in skcipher_recvmsg function"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:23:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:23:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Carl Waldspurger"
],
"organization": "Carl Waldspurger Consulting"
},
{
"names": [
"Vladimir Kiriansky"
],
"organization": "MIT"
}
],
"cve": "CVE-2018-3693",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1581650"
}
],
"notes": [
{
"category": "description",
"text": "An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions past bounds check. The flaw relies on the presence of a precisely-defined instruction sequence in the privileged code and the fact that memory writes occur to an address which depends on the untrusted value. Such writes cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to influence speculative execution and/or read privileged memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: speculative bounds check bypass store",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3693"
},
{
"category": "external",
"summary": "RHBZ#1581650",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581650"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3693",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3693"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3693",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3693"
},
{
"category": "external",
"summary": "https://01.org/security/advisories/intel-oss-10002",
"url": "https://01.org/security/advisories/intel-oss-10002"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/3523601",
"url": "https://access.redhat.com/solutions/3523601"
},
{
"category": "external",
"summary": "https://people.csail.mit.edu/vlk/spectre11.pdf",
"url": "https://people.csail.mit.edu/vlk/spectre11.pdf"
},
{
"category": "external",
"summary": "https://software.intel.com/sites/default/files/managed/4e/a1/337879-analyzing-potential-bounds-Check-bypass-vulnerabilities.pdf",
"url": "https://software.intel.com/sites/default/files/managed/4e/a1/337879-analyzing-potential-bounds-Check-bypass-vulnerabilities.pdf"
}
],
"release_date": "2018-07-10T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:23:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: speculative bounds check bypass store"
},
{
"acknowledgments": [
{
"names": [
"Juha-Matti Tilli"
],
"organization": "Aalto University - Department of Communications and Networking and Nokia Bell Labs"
}
],
"cve": "CVE-2018-5390",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1601704"
}
],
"notes": [
{
"category": "description",
"text": "A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/articles/3553061\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64, and Red Hat Enterprise Linux 7 for Power 9. Future kernel updates for the respective releases will address this issue.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, but to a lesser degree. As such, the issue severity for RHEL5 is considered Moderate. This is not currently planned to be addressed in future updates of the product due to its life cycle and the issue severity. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5390"
},
{
"category": "external",
"summary": "RHBZ#1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5390",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5390"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3553061",
"url": "https://access.redhat.com/articles/3553061"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/962459",
"url": "https://www.kb.cert.org/vuls/id/962459"
},
{
"category": "external",
"summary": "https://www.spinics.net/lists/netdev/msg514742.html",
"url": "https://www.spinics.net/lists/netdev/msg514742.html"
}
],
"release_date": "2018-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:23:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)"
},
{
"cve": "CVE-2018-7566",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2018-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1550142"
}
],
"notes": [
{
"category": "description",
"text": "ALSA sequencer core initializes the event pool on demand by invoking snd_seq_pool_init() when the first write happens and the pool is empty. A user can reset the pool size manually via ioctl concurrently, and this may lead to UAF or out-of-bound access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: race condition in snd_seq_write() may lead to UAF or OOB-access",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-7566"
},
{
"category": "external",
"summary": "RHBZ#1550142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1550142"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-7566",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7566"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-7566",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7566"
}
],
"release_date": "2018-02-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:23:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: race condition in snd_seq_write() may lead to UAF or OOB-access"
},
{
"cve": "CVE-2018-10675",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2018-05-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1575065"
}
],
"notes": [
{
"category": "description",
"text": "The do_get_mempolicy() function in mm/mempolicy.c in the Linux kernel allows local users to hit a use-after-free bug via crafted system calls and thus cause a denial of service (DoS) or possibly have unspecified other impact. Due to the nature of the flaw, privilege escalation cannot be fully ruled out.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: mm: use-after-free in do_get_mempolicy function allows local DoS or other unspecified impact",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10675"
},
{
"category": "external",
"summary": "RHBZ#1575065",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1575065"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10675",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10675"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10675",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10675"
}
],
"release_date": "2017-08-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:23:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2395"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-NFV-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-NFV-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-NFV-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.src",
"7Server-RT-7.5.Z:kernel-rt-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7.noarch",
"7Server-RT-7.5.Z:kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7.x86_64",
"7Server-RT-7.5.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-862.11.6.rt56.819.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: mm: use-after-free in do_get_mempolicy function allows local DoS or other unspecified impact"
}
]
}
RHSA-2018_2396
Vulnerability from csaf_redhat - Published: 2018-08-14 20:17 - Updated: 2024-11-15 02:13Summary
Red Hat Security Advisory: kernel-rt security and bug fix update
Severity
Important
Notes
Topic: An update for kernel-rt is now available for Red Hat Enterprise MRG 2.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639)
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting CVE-2018-3639.
Bug Fix(es):
* The kernel-rt packages have been upgraded to the 3.10.0-693.37.1 source tree, which provides a number of bug fixes over the previous version. (BZ#1599860)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
29 references
Acknowledgments
Intel.com
Intel OSSIRT
Google Project Zero
Jann Horn
Microsoft Security Response Center
Ken Johnson
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-rt is now available for Red Hat Enterprise MRG 2.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\n* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load \u0026 Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639)\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting CVE-2018-3639.\n\nBug Fix(es):\n\n* The kernel-rt packages have been upgraded to the 3.10.0-693.37.1 source tree, which provides a number of bug fixes over the previous version. (BZ#1599860)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2396",
"url": "https://access.redhat.com/errata/RHSA-2018:2396"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "1566890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1566890"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "1599860",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1599860"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2396.json"
}
],
"title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
"tracking": {
"current_release_date": "2024-11-15T02:13:03+00:00",
"generator": {
"date": "2024-11-15T02:13:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2396",
"initial_release_date": "2018-08-14T20:17:22+00:00",
"revision_history": [
{
"date": "2018-08-14T20:17:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-14T20:17:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:13:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
"product": {
"name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise MRG for RHEL-6"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"product": {
"name": "kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"product_id": "kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-firmware@3.10.0-693.37.4.rt56.629.el6rt?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"product": {
"name": "kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"product_id": "kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-doc@3.10.0-693.37.4.rt56.629.el6rt?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-vanilla@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product": {
"name": "kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_id": "kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-trace-devel@3.10.0-693.37.4.rt56.629.el6rt?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"product": {
"name": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"product_id": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@3.10.0-693.37.4.rt56.629.el6rt?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src"
},
"product_reference": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch"
},
"product_reference": "kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch"
},
"product_reference": "kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
"product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
},
"product_reference": "kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"relates_to_product_reference": "6Server-MRG-Realtime-2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:17:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2396"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Jann Horn"
],
"organization": "Google Project Zero"
},
{
"names": [
"Ken Johnson"
],
"organization": "Microsoft Security Response Center"
}
],
"cve": "CVE-2018-3639",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1566890"
}
],
"notes": [
{
"category": "description",
"text": "An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load \u0026 Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: speculative store bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/security/vulnerabilities/ssbd",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3639"
},
{
"category": "external",
"summary": "RHBZ#1566890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1566890"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3639"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/ssbd",
"url": "https://access.redhat.com/security/vulnerabilities/ssbd"
},
{
"category": "external",
"summary": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1528",
"url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1528"
},
{
"category": "external",
"summary": "https://software.intel.com/sites/default/files/managed/b9/f9/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf",
"url": "https://software.intel.com/sites/default/files/managed/b9/f9/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf"
},
{
"category": "external",
"summary": "https://software.intel.com/sites/default/files/managed/c5/63/336996-Speculative-Execution-Side-Channel-Mitigations.pdf",
"url": "https://software.intel.com/sites/default/files/managed/c5/63/336996-Speculative-Execution-Side-Channel-Mitigations.pdf"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html"
}
],
"release_date": "2018-05-21T21:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:17:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2396"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "hw: cpu: speculative store bypass"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-14T20:17:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2396"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.src",
"6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.37.4.rt56.629.el6rt.noarch",
"6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64",
"6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.37.4.rt56.629.el6rt.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
}
]
}
RHSA-2018_2402
Vulnerability from csaf_redhat - Published: 2018-08-16 06:10 - Updated: 2024-11-15 02:12Summary
Red Hat Security Advisory: rhvm-appliance security update
Severity
Important
Notes
Topic: An update for rhvm-appliance is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The RHV-M Virtual Appliance automates the process of installing and configuring the Red Hat Virtualization Manager. The appliance is available to download as an OVA file from the Customer Portal.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Juha-Matti Tilli (Aalto University, Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
27 references
Acknowledgments
Intel.com
Intel OSSIRT
Aalto University - Department of Communications and Networking and Nokia Bell Labs
Juha-Matti Tilli
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhvm-appliance is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The RHV-M Virtual Appliance automates the process of installing and configuring the Red Hat Virtualization Manager. The appliance is available to download as an OVA file from the Customer Portal.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\n* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Juha-Matti Tilli (Aalto University, Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2402",
"url": "https://access.redhat.com/errata/RHSA-2018:2402"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "external",
"summary": "1614066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1614066"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2402.json"
}
],
"title": "Red Hat Security Advisory: rhvm-appliance security update",
"tracking": {
"current_release_date": "2024-11-15T02:12:25+00:00",
"generator": {
"date": "2024-11-15T02:12:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2402",
"initial_release_date": "2018-08-16T06:10:06+00:00",
"revision_history": [
{
"date": "2018-08-16T06:10:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-16T06:10:06+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:12:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product": {
"name": "Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
},
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product": {
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "rhvm-appliance-2:4.2-20180813.0.el7.src",
"product": {
"name": "rhvm-appliance-2:4.2-20180813.0.el7.src",
"product_id": "rhvm-appliance-2:4.2-20180813.0.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhvm-appliance@4.2-20180813.0.el7?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"product": {
"name": "rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"product_id": "rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhvm-appliance@4.2-20180813.0.el7?arch=noarch\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-appliance-2:4.2-20180813.0.el7.noarch as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch"
},
"product_reference": "rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-appliance-2:4.2-20180813.0.el7.src as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
},
"product_reference": "rhvm-appliance-2:4.2-20180813.0.el7.src",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-appliance-2:4.2-20180813.0.el7.noarch as a component of Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch"
},
"product_reference": "rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"relates_to_product_reference": "7Server-RHEV-4-Hypervisor-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-appliance-2:4.2-20180813.0.el7.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
},
"product_reference": "rhvm-appliance-2:4.2-20180813.0.el7.src",
"relates_to_product_reference": "7Server-RHEV-4-Hypervisor-7"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-16T06:10:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-16T06:10:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Juha-Matti Tilli"
],
"organization": "Aalto University - Department of Communications and Networking and Nokia Bell Labs"
}
],
"cve": "CVE-2018-5390",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1601704"
}
],
"notes": [
{
"category": "description",
"text": "A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/articles/3553061\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64, and Red Hat Enterprise Linux 7 for Power 9. Future kernel updates for the respective releases will address this issue.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, but to a lesser degree. As such, the issue severity for RHEL5 is considered Moderate. This is not currently planned to be addressed in future updates of the product due to its life cycle and the issue severity. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5390"
},
{
"category": "external",
"summary": "RHBZ#1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5390",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5390"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3553061",
"url": "https://access.redhat.com/articles/3553061"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/962459",
"url": "https://www.kb.cert.org/vuls/id/962459"
},
{
"category": "external",
"summary": "https://www.spinics.net/lists/netdev/msg514742.html",
"url": "https://www.spinics.net/lists/netdev/msg514742.html"
}
],
"release_date": "2018-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-16T06:10:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Agents-7:rhvm-appliance-2:4.2-20180813.0.el7.src",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.noarch",
"7Server-RHEV-4-Hypervisor-7:rhvm-appliance-2:4.2-20180813.0.el7.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)"
}
]
}
RHSA-2018_2403
Vulnerability from csaf_redhat - Published: 2018-08-15 10:20 - Updated: 2024-11-15 02:12Summary
Red Hat Security Advisory: redhat-virtualization-host security update
Severity
Important
Notes
Topic: An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Juha-Matti Tilli (Aalto University, Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.
7.5 (High)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
27 references
Acknowledgments
Intel.com
Intel OSSIRT
Aalto University - Department of Communications and Networking and Nokia Bell Labs
Juha-Matti Tilli
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host\u0027s resources and performing administrative tasks.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\n* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting CVE-2018-3620 and CVE-2018-3646 and Juha-Matti Tilli (Aalto University, Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2403",
"url": "https://access.redhat.com/errata/RHSA-2018:2403"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "external",
"summary": "1614067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1614067"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2403.json"
}
],
"title": "Red Hat Security Advisory: redhat-virtualization-host security update",
"tracking": {
"current_release_date": "2024-11-15T02:12:20+00:00",
"generator": {
"date": "2024-11-15T02:12:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2403",
"initial_release_date": "2018-08-15T10:20:45+00:00",
"revision_history": [
{
"date": "2018-08-15T10:20:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-15T10:20:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:12:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product": {
"name": "RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
},
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product": {
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"product": {
"name": "redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"product_id": "redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.2-5.2.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"product": {
"name": "redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"product_id": "redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.2-5.2.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"product": {
"name": "redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"product_id": "redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host@4.2-20180813.0.el7_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch",
"product_id": "redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update-placeholder@4.2-5.2.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"product_id": "redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update@4.2-20180813.0.el7_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-0:4.2-20180813.0.el7_5.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src"
},
"product_reference": "redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"relates_to_product_reference": "7Server-RHEV-4-Hypervisor-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch as a component of Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"relates_to_product_reference": "7Server-RHEV-4-Hypervisor-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.2-5.2.el7.src as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src"
},
"product_reference": "redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64 as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64"
},
"product_reference": "redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-15T10:20:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2403"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-15T10:20:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2403"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Juha-Matti Tilli"
],
"organization": "Aalto University - Department of Communications and Networking and Nokia Bell Labs"
}
],
"cve": "CVE-2018-5390",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1601704"
}
],
"notes": [
{
"category": "description",
"text": "A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/articles/3553061\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64, and Red Hat Enterprise Linux 7 for Power 9. Future kernel updates for the respective releases will address this issue.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, but to a lesser degree. As such, the issue severity for RHEL5 is considered Moderate. This is not currently planned to be addressed in future updates of the product due to its life cycle and the issue severity. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5390"
},
{
"category": "external",
"summary": "RHBZ#1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5390",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5390"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3553061",
"url": "https://access.redhat.com/articles/3553061"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/962459",
"url": "https://www.kb.cert.org/vuls/id/962459"
},
{
"category": "external",
"summary": "https://www.spinics.net/lists/netdev/msg514742.html",
"url": "https://www.spinics.net/lists/netdev/msg514742.html"
}
],
"release_date": "2018-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-15T10:20:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2403"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.2-20180813.0.el7_5.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.2-20180813.0.el7_5.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.2-5.2.el7.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.2-5.2.el7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)"
}
]
}
RHSA-2018_2404
Vulnerability from csaf_redhat - Published: 2018-08-15 15:25 - Updated: 2024-11-15 02:12Summary
Red Hat Security Advisory: rhev-hypervisor7 security update
Severity
Important
Notes
Topic: An update for rhev-hypervisor7 is now available for RHEV 3.X Hypervisor and Agents for Red Hat Enterprise Linux 6 and RHEV 3.X Hypervisor and Agents Extended Lifecycle Support for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The rhev-hypervisor7 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting these issues.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
19 references
Acknowledgments
Intel.com
Intel OSSIRT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhev-hypervisor7 is now available for RHEV 3.X Hypervisor and Agents for Red Hat Enterprise Linux 6 and RHEV 3.X Hypervisor and Agents Extended Lifecycle Support for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The rhev-hypervisor7 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimisation) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2404",
"url": "https://access.redhat.com/errata/RHSA-2018:2404"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "1614065",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1614065"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2404.json"
}
],
"title": "Red Hat Security Advisory: rhev-hypervisor7 security update",
"tracking": {
"current_release_date": "2024-11-15T02:12:14+00:00",
"generator": {
"date": "2024-11-15T02:12:14+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2404",
"initial_release_date": "2018-08-15T15:25:12+00:00",
"revision_history": [
{
"date": "2018-08-15T15:25:12+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-15T15:25:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:12:14+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEV Hypervisor for RHEL-6 ELS",
"product": {
"name": "RHEV Hypervisor for RHEL-6 ELS",
"product_id": "6Server-RHEV-Hypervisor-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::hypervisor"
}
}
},
{
"category": "product_name",
"name": "RHEL 7-based RHEV-H ELS",
"product": {
"name": "RHEL 7-based RHEV-H ELS",
"product_id": "7Server-RHEV-Hypervisor-ELS-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"product": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"product_id": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhev-hypervisor7@7.3-20180813.0.el6ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.src",
"product": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.src",
"product_id": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhev-hypervisor7@7.3-20180813.0.el7ev?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"product": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"product_id": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhev-hypervisor7@7.3-20180813.0.el6ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"product": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"product_id": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhev-hypervisor7@7.3-20180813.0.el7ev?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch as a component of RHEV Hypervisor for RHEL-6 ELS",
"product_id": "6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch"
},
"product_reference": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"relates_to_product_reference": "6Server-RHEV-Hypervisor-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.src as a component of RHEV Hypervisor for RHEL-6 ELS",
"product_id": "6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src"
},
"product_reference": "rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"relates_to_product_reference": "6Server-RHEV-Hypervisor-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch as a component of RHEL 7-based RHEV-H ELS",
"product_id": "7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch"
},
"product_reference": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"relates_to_product_reference": "7Server-RHEV-Hypervisor-ELS-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.src as a component of RHEL 7-based RHEV-H ELS",
"product_id": "7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src"
},
"product_reference": "rhev-hypervisor7-0:7.3-20180813.0.el7ev.src",
"relates_to_product_reference": "7Server-RHEV-Hypervisor-ELS-7"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-15T15:25:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2404"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-15T15:25:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2404"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.noarch",
"6Server-RHEV-Hypervisor-ELS:rhev-hypervisor7-0:7.3-20180813.0.el6ev.src",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.noarch",
"7Server-RHEV-Hypervisor-ELS-7:rhev-hypervisor7-0:7.3-20180813.0.el7ev.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
}
]
}
RHSA-2018_2602
Vulnerability from csaf_redhat - Published: 2018-08-29 18:29 - Updated: 2024-11-15 02:13Summary
Red Hat Security Advisory: kernel security update
Severity
Important
Notes
Topic: An update for kernel is now available for Red Hat Enterprise Linux 5 Extended Lifecycle Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting these issues.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
38 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
17 references
Acknowledgments
Intel.com
Intel OSSIRT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel is now available for Red Hat Enterprise Linux 5 Extended Lifecycle Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2602",
"url": "https://access.redhat.com/errata/RHSA-2018:2602"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2602.json"
}
],
"title": "Red Hat Security Advisory: kernel security update",
"tracking": {
"current_release_date": "2024-11-15T02:13:02+00:00",
"generator": {
"date": "2024-11-15T02:13:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2602",
"initial_release_date": "2018-08-29T18:29:49+00:00",
"revision_history": [
{
"date": "2018-08-29T18:29:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-29T18:29:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:13:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 5 ELS)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:5"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-devel-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-devel-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-xen-devel-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-xen-devel-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-xen-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-xen-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-headers-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-headers-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-434.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-434.el5.x86_64",
"product": {
"name": "kernel-debug-0:2.6.18-434.el5.x86_64",
"product_id": "kernel-debug-0:2.6.18-434.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-434.el5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"product_id": "kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"product_id": "kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-devel-0:2.6.18-434.el5.i686",
"product_id": "kernel-devel-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-devel-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-PAE-devel-0:2.6.18-434.el5.i686",
"product_id": "kernel-PAE-devel-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-xen-devel-0:2.6.18-434.el5.i686",
"product_id": "kernel-xen-devel-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-debuginfo-0:2.6.18-434.el5.i686",
"product_id": "kernel-debuginfo-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-xen-0:2.6.18-434.el5.i686",
"product_id": "kernel-xen-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-debug-devel-0:2.6.18-434.el5.i686",
"product_id": "kernel-debug-devel-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-0:2.6.18-434.el5.i686",
"product_id": "kernel-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"product_id": "kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-PAE-0:2.6.18-434.el5.i686",
"product_id": "kernel-PAE-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-debug-0:2.6.18-434.el5.i686",
"product_id": "kernel-debug-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-434.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"product": {
"name": "kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"product_id": "kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-434.el5?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-434.el5.i386",
"product": {
"name": "kernel-headers-0:2.6.18-434.el5.i386",
"product_id": "kernel-headers-0:2.6.18-434.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-434.el5?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:2.6.18-434.el5.noarch",
"product": {
"name": "kernel-doc-0:2.6.18-434.el5.noarch",
"product_id": "kernel-doc-0:2.6.18-434.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@2.6.18-434.el5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"product_id": "kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-devel-0:2.6.18-434.el5.s390x",
"product_id": "kernel-devel-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-debuginfo-0:2.6.18-434.el5.s390x",
"product_id": "kernel-debuginfo-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-headers-0:2.6.18-434.el5.s390x",
"product_id": "kernel-headers-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"product_id": "kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-debug-devel-0:2.6.18-434.el5.s390x",
"product_id": "kernel-debug-devel-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-0:2.6.18-434.el5.s390x",
"product_id": "kernel-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"product_id": "kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-kdump-0:2.6.18-434.el5.s390x",
"product_id": "kernel-kdump-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"product_id": "kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-434.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-434.el5.s390x",
"product": {
"name": "kernel-debug-0:2.6.18-434.el5.s390x",
"product_id": "kernel-debug-0:2.6.18-434.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-434.el5?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:2.6.18-434.el5.src",
"product": {
"name": "kernel-0:2.6.18-434.el5.src",
"product_id": "kernel-0:2.6.18-434.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-434.el5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-434.el5.src as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-0:2.6.18-434.el5.src"
},
"product_reference": "kernel-0:2.6.18-434.el5.src",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-PAE-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-debuginfo-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-devel-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-PAE-devel-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-debug-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-debug-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-debug-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-debug-devel-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-debug-devel-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-debuginfo-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-debuginfo-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-devel-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-devel-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-devel-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.18-434.el5.noarch as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch"
},
"product_reference": "kernel-doc-0:2.6.18-434.el5.noarch",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-434.el5.i386 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386"
},
"product_reference": "kernel-headers-0:2.6.18-434.el5.i386",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-headers-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-headers-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-kdump-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:2.6.18-434.el5.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x"
},
"product_reference": "kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-xen-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-xen-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-434.el5.i686 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686"
},
"product_reference": "kernel-xen-devel-0:2.6.18-434.el5.i686",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-434.el5.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64"
},
"product_reference": "kernel-xen-devel-0:2.6.18-434.el5.x86_64",
"relates_to_product_reference": "5Server-ELS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-ELS:kernel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-0:2.6.18-434.el5.src",
"5Server-ELS:kernel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-29T18:29:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"5Server-ELS:kernel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-0:2.6.18-434.el5.src",
"5Server-ELS:kernel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2602"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"5Server-ELS:kernel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-0:2.6.18-434.el5.src",
"5Server-ELS:kernel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-ELS:kernel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-0:2.6.18-434.el5.src",
"5Server-ELS:kernel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-29T18:29:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"5Server-ELS:kernel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-0:2.6.18-434.el5.src",
"5Server-ELS:kernel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2602"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"5Server-ELS:kernel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-0:2.6.18-434.el5.src",
"5Server-ELS:kernel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-PAE-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-PAE-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debug-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-debuginfo-common-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-devel-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-doc-0:2.6.18-434.el5.noarch",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.i386",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-headers-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-kdump-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-debuginfo-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-kdump-devel-0:2.6.18-434.el5.s390x",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-debuginfo-0:2.6.18-434.el5.x86_64",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.i686",
"5Server-ELS:kernel-xen-devel-0:2.6.18-434.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
}
]
}
RHSA-2018_2603
Vulnerability from csaf_redhat - Published: 2018-08-29 18:30 - Updated: 2024-11-15 02:13Summary
Red Hat Security Advisory: kernel security update
Severity
Important
Notes
Topic: An update for kernel is now available for Red Hat Enterprise Linux 5.9 Long Life.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)
Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting these issues.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
17 references
Acknowledgments
Intel.com
Intel OSSIRT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel is now available for Red Hat Enterprise Linux 5.9 Long Life.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)\n\nRed Hat would like to thank Intel OSSIRT (Intel.com) for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2603",
"url": "https://access.redhat.com/errata/RHSA-2018:2603"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2603.json"
}
],
"title": "Red Hat Security Advisory: kernel security update",
"tracking": {
"current_release_date": "2024-11-15T02:13:08+00:00",
"generator": {
"date": "2024-11-15T02:13:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2603",
"initial_release_date": "2018-08-29T18:30:04+00:00",
"revision_history": [
{
"date": "2018-08-29T18:30:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-29T18:30:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:13:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product": {
"name": "Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:5.9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-348.41.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"product": {
"name": "kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"product_id": "kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-348.41.1.el5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-devel-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-devel-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-debug-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-debug-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-xen-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-xen-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-348.41.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"product": {
"name": "kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"product_id": "kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-348.41.1.el5?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-348.41.1.el5.i386",
"product": {
"name": "kernel-headers-0:2.6.18-348.41.1.el5.i386",
"product_id": "kernel-headers-0:2.6.18-348.41.1.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-348.41.1.el5?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"product": {
"name": "kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"product_id": "kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@2.6.18-348.41.1.el5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:2.6.18-348.41.1.el5.src",
"product": {
"name": "kernel-0:2.6.18-348.41.1.el5.src",
"product_id": "kernel-0:2.6.18-348.41.1.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-348.41.1.el5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-348.41.1.el5.src as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src"
},
"product_reference": "kernel-0:2.6.18-348.41.1.el5.src",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-debug-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-devel-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.18-348.41.1.el5.noarch as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch"
},
"product_reference": "kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-348.41.1.el5.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386"
},
"product_reference": "kernel-headers-0:2.6.18-348.41.1.el5.i386",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-xen-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-348.41.1.el5.i686 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686"
},
"product_reference": "kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64"
},
"product_reference": "kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3620",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3620"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-29T18:30:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2603"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
},
{
"acknowledgments": [
{
"names": [
"Intel OSSIRT"
],
"organization": "Intel.com"
}
],
"cve": "CVE-2018-3646",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1585005"
}
],
"notes": [
{
"category": "description",
"text": "Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: hw: cpu: L1 terminal fault (L1TF)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "RHBZ#1585005",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3646"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3562741",
"url": "https://access.redhat.com/articles/3562741"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/L1TF",
"url": "https://access.redhat.com/security/vulnerabilities/L1TF"
},
{
"category": "external",
"summary": "https://foreshadowattack.eu/",
"url": "https://foreshadowattack.eu/"
},
{
"category": "external",
"summary": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault",
"url": "https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow",
"url": "https://www.redhat.com/en/blog/deeper-look-l1-terminal-fault-aka-foreshadow"
},
{
"category": "external",
"summary": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know",
"url": "https://www.redhat.com/en/blog/understanding-l1-terminal-fault-aka-foreshadow-what-you-need-know"
}
],
"release_date": "2018-08-14T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-29T18:30:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2603"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.src",
"5Server-5.9.AUS:kernel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-PAE-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-PAE-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debug-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-debuginfo-common-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-devel-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-doc-0:2.6.18-348.41.1.el5.noarch",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.i386",
"5Server-5.9.AUS:kernel-headers-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-debuginfo-0:2.6.18-348.41.1.el5.x86_64",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.i686",
"5Server-5.9.AUS:kernel-xen-devel-0:2.6.18-348.41.1.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: hw: cpu: L1 terminal fault (L1TF)"
}
]
}
SUSE-SU-2018:2328-1
Vulnerability from csaf_suse - Published: 2018-08-14 17:02 - Updated: 2018-08-14 17:02Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.143 to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2018-5390 aka 'SegmentSmack': Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bnc#1102340).
- CVE-2018-14734: drivers/infiniband/core/ucma.c in the Linux kernel allowed ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allowed attackers to cause a denial of service (use-after-free) (bnc#1103119).
- CVE-2017-18344: The timer_create syscall implementation in kernel/time/posix-timers.c didn't properly validate the sigevent->sigev_notify field, which lead to out-of-bounds access in the show_timer function (called when /proc/$PID/timers is read). This allowed userspace applications to read arbitrary kernel memory (on a kernel built with CONFIG_POSIX_TIMERS and CONFIG_CHECKPOINT_RESTORE) (bnc#1102851 bnc#1103580).
- CVE-2018-3620: Local attackers on baremetal systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data. (bnc#1087081).
- CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data, even from other virtual machines or the host system. (bnc#1089343).
The following non-security bugs were fixed:
- Add support for 5,25,50, and 100G to 802.3ad bonding driver (bsc#1096978)
- ahci: Disable LPM on Lenovo 50 series laptops with a too old BIOS (bnc#1012382).
- arm64: do not open code page table entry creation (bsc#1102197).
- arm64: kpti: Use early_param for kpti= command-line option (bsc#1102188).
- arm64: Make sure permission updates happen for pmd/pud (bsc#1102197).
- atm: zatm: Fix potential Spectre v1 (bnc#1012382).
- bcm63xx_enet: correct clock usage (bnc#1012382).
- bcm63xx_enet: do not write to random DMA channel on BCM6345 (bnc#1012382).
- blacklist 9fb8d5dc4b64 ('stop_machine: Disable preemption when waking two stopper threads') Preemption is already disabled inside cpu_stop_queue_two_works() in SLE12-SP3 because it does not have commit 6a19005157c4 ('stop_machine: Do not disable preemption in stop_two_cpus()')
- block: copy ioprio in __bio_clone_fast() (bsc#1082653).
- bpf: fix loading of BPF_MAXINSNS sized programs (bsc#1012382).
- bpf, x64: fix memleak when not converging after image (bsc#1012382).
- cachefiles: Fix missing clear of the CACHEFILES_OBJECT_ACTIVE flag (bsc#1099858).
- cachefiles: Fix refcounting bug in backing-file read monitoring (bsc#1099858).
- cachefiles: Wait rather than BUG'ing on 'Unexpected object collision' (bsc#1099858).
- cifs: fix bad/NULL ptr dereferencing in SMB2_sess_setup() (bsc#1090123).
- compiler, clang: always inline when CONFIG_OPTIMIZE_INLINING is disabled (bnc#1012382).
- compiler, clang: properly override 'inline' for clang (bnc#1012382).
- compiler, clang: suppress warning for unused static inline functions (bnc#1012382).
- compiler-gcc.h: Add __attribute__((gnu_inline)) to all inline declarations (bnc#1012382).
- cpu/hotplug: Add sysfs state interface (bsc#1089343).
- cpu/hotplug: Provide knobs to control SMT (bsc#1089343).
- cpu/hotplug: Split do_cpu_down() (bsc#1089343).
- crypto: crypto4xx - fix crypto4xx_build_pdr, crypto4xx_build_sdr leak (bnc#1012382).
- crypto: crypto4xx - remove bad list_del (bnc#1012382).
- drm/msm: Fix possible null dereference on failure of get_pages() (bsc#1102394).
- drm: re-enable error handling (bsc#1103884).
- fscache: Allow cancelled operations to be enqueued (bsc#1099858).
- fscache: Fix reference overput in fscache_attach_object() error handling (bsc#1099858).
- hid: usbhid: add quirk for innomedia INNEX GENESIS/ATARI adapter (bnc#1012382).
- ibmasm: do not write out of bounds in read handler (bnc#1012382).
- ibmvnic: Fix error recovery on login failure (bsc#1101789).
- iw_cxgb4: correctly enforce the max reg_mr depth (bnc#1012382).
- kabi protect includes in include/linux/inet.h (bsc#1095643).
- KABI protect net/core/utils.c includes (bsc#1095643).
- kABI: protect struct loop_device (kabi).
- kABI: reintroduce __static_cpu_has_safe (kabi).
- kbuild: fix # escaping in .cmd files for future Make (bnc#1012382).
- keys: DNS: fix parsing multiple options (bnc#1012382).
- kvm: arm/arm64: Drop resource size check for GICV window (bsc#1102215).
- kvm: arm/arm64: Set dist->spis to NULL after kfree (bsc#1102214).
- loop: add recursion validation to LOOP_CHANGE_FD (bnc#1012382).
- loop: remember whether sysfs_create_group() was done (bnc#1012382).
- mmc: dw_mmc: fix card threshold control configuration (bsc#1102203).
- mm: check VMA flags to avoid invalid PROT_NONE NUMA balancing (bsc#1097771).
- net: cxgb3_main: fix potential Spectre v1 (bnc#1012382).
- net: dccp: avoid crash in ccid3_hc_rx_send_feedback() (bnc#1012382).
- net: dccp: switch rx_tstamp_last_feedback to monotonic clock (bnc#1012382).
- netfilter: ebtables: reject non-bridge targets (bnc#1012382).
- netfilter: nf_queue: augment nfqa_cfg_policy (bnc#1012382).
- netfilter: x_tables: initialise match/target check parameter struct (bnc#1012382).
- net/mlx5: Fix command interface race in polling mode (bnc#1012382).
- net/mlx5: Fix incorrect raw command length parsing (bnc#1012382).
- net: mvneta: fix the Rx desc DMA address in the Rx path (bsc#1102207).
- net/nfc: Avoid stalls when nfc_alloc_send_skb() returned NULL (bnc#1012382).
- net: off by one in inet6_pton() (bsc#1095643).
- net: phy: marvell: Use strlcpy() for ethtool::get_strings (bsc#1102205).
- net_sched: blackhole: tell upper qdisc about dropped packets (bnc#1012382).
- net: sungem: fix rx checksum support (bnc#1012382).
- net/utils: generic inet_pton_with_scope helper (bsc#1095643).
- nvme-rdma: Check remotely invalidated rkey matches our expected rkey (bsc#1092001).
- nvme-rdma: default MR page size to 4k (bsc#1092001).
- nvme-rdma: do not complete requests before a send work request has completed (bsc#1092001).
- nvme-rdma: do not suppress send completions (bsc#1092001).
- nvme-rdma: Fix command completion race at error recovery (bsc#1090435).
- nvme-rdma: make nvme_rdma_[create|destroy]_queue_ib symmetrical (bsc#1092001).
- nvme-rdma: use inet_pton_with_scope helper (bsc#1095643).
- nvme-rdma: Use mr pool (bsc#1092001).
- nvme-rdma: wait for local invalidation before completing a request (bsc#1092001).
- ocfs2: subsystem.su_mutex is required while accessing the item->ci_parent (bnc#1012382).
- pci: ibmphp: Fix use-before-set in get_max_bus_speed() (bsc#1100132).
- perf tools: Move syscall number fallbacks from perf-sys.h to tools/arch/x86/include/asm/ (bnc#1012382).
- pm / hibernate: Fix oops at snapshot_write() (bnc#1012382).
- powerpc/64: Initialise thread_info for emergency stacks (bsc#1094244, bsc#1100930, bsc#1102683).
- qed: Limit msix vectors in kdump kernel to the minimum required count (bnc#1012382).
- r8152: napi hangup fix after disconnect (bnc#1012382).
- rdma/ucm: Mark UCM interface as BROKEN (bnc#1012382).
- rds: avoid unenecessary cong_update in loop transport (bnc#1012382).
- Revert 'sit: reload iphdr in ipip6_rcv' (bnc#1012382).
- Revert 'x86/cpufeature: Move some of the scattered feature bits to x86_capability' (kabi).
- Revert 'x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6' (kabi).
- rtlwifi: rtl8821ae: fix firmware is not ready to run (bnc#1012382).
- s390/qeth: fix error handling in adapter command callbacks (bnc#1103745, LTC#169699).
- sched/smt: Update sched_smt_present at runtime (bsc#1089343).
- smsc75xx: Add workaround for gigabit link up hardware errata (bsc#1100132).
- smsc95xx: Configure pause time to 0xffff when tx flow control enabled (bsc#1085536).
- tcp: fix Fast Open key endianness (bnc#1012382).
- tcp: prevent bogus FRTO undos with non-SACK flows (bnc#1012382).
- tools build: fix # escaping in .cmd files for future Make (bnc#1012382).
- uprobes/x86: Remove incorrect WARN_ON() in uprobe_init_insn() (bnc#1012382).
- usb: core: handle hub C_PORT_OVER_CURRENT condition (bsc#1100132).
- usb: quirks: add delay quirks for Corsair Strafe (bnc#1012382).
- usb: serial: ch341: fix type promotion bug in ch341_control_in() (bnc#1012382).
- usb: serial: cp210x: add another USB ID for Qivicon ZigBee stick (bnc#1012382).
- usb: serial: keyspan_pda: fix modem-status error handling (bnc#1012382).
- usb: serial: mos7840: fix status-register error handling (bnc#1012382).
- usb: yurex: fix out-of-bounds uaccess in read handler (bnc#1012382).
- vfio: platform: Fix reset module leak in error path (bsc#1102211).
- vhost_net: validate sock before trying to put its fd (bnc#1012382).
- vmw_balloon: fix inflation with batching (bnc#1012382).
- x86/alternatives: Add an auxilary section (bnc#1012382).
- x86/alternatives: Discard dynamic check after init (bnc#1012382).
- x86/apic: Ignore secondary threads if nosmt=force (bsc#1089343).
- x86/asm: Add _ASM_ARG* constants for argument registers to <asm/asm.h> (bnc#1012382).
- x86/boot: Simplify kernel load address alignment check (bnc#1012382).
- x86/CPU/AMD: Do not check CPUID max ext level before parsing SMP info (bsc#1089343).
- x86/cpu/AMD: Evaluate smp_num_siblings early (bsc#1089343).
- x86/CPU/AMD: Move TOPOEXT reenablement before reading smp_num_siblings (bsc#1089343). Update config files.
- x86/cpu/AMD: Remove the pointless detect_ht() call (bsc#1089343).
- x86/cpu/common: Provide detect_ht_early() (bsc#1089343).
- x86/cpufeature: Add helper macro for mask check macros (bnc#1012382).
- x86/cpufeature: Carve out X86_FEATURE_* (bnc#1012382).
- x86/cpufeature: Get rid of the non-asm goto variant (bnc#1012382).
- x86/cpufeature: Make sure DISABLED/REQUIRED macros are updated (bnc#1012382).
- x86/cpufeature: Move some of the scattered feature bits to x86_capability (bnc#1012382).
- x86/cpufeature: Replace the old static_cpu_has() with safe variant (bnc#1012382).
- x86/cpufeature: Speed up cpu_feature_enabled() (bnc#1012382).
- x86/cpufeature: Update cpufeaure macros (bnc#1012382).
- x86/cpu/intel: Evaluate smp_num_siblings early (bsc#1089343).
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (bnc#1012382).
- x86/cpu: Provide a config option to disable static_cpu_has (bnc#1012382).
- x86/cpu: Remove the pointless CPU printout (bsc#1089343).
- x86/cpu/topology: Provide detect_extended_topology_early() (bsc#1089343).
- x86/fpu: Add an XSTATE_OP() macro (bnc#1012382).
- x86/fpu: Get rid of xstate_fault() (bnc#1012382).
- x86/headers: Do not include asm/processor.h in asm/atomic.h (bnc#1012382).
- x86/mm/pkeys: Fix mismerge of protection keys CPUID bits (bnc#1012382).
- x86/mm: Simplify p[g4um]d_page() macros (1087081).
- x86/smpboot: Do not use smp_num_siblings in __max_logical_packages calculation (bsc#1089343).
- x86/smp: Provide topology_is_primary_thread() (bsc#1089343).
- x86/topology: Add topology_max_smt_threads() (bsc#1089343).
- x86/topology: Provide topology_smt_supported() (bsc#1089343).
- x86/vdso: Use static_cpu_has() (bnc#1012382).
- xen/grant-table: log the lack of grants (bnc#1085042).
- xen-netfront: Fix mismatched rtnl_unlock (bnc#1101658).
- xen-netfront: Update features after registering netdev (bnc#1101658).
- xhci: xhci-mem: off by one in xhci_stream_id_to_ring() (bnc#1012382).
Patchnames: SUSE-SLE-DESKTOP-12-SP3-2018-1566,SUSE-SLE-HA-12-SP3-2018-1566,SUSE-SLE-Live-Patching-12-SP3-2018-1566,SUSE-SLE-SDK-12-SP3-2018-1566,SUSE-SLE-SERVER-12-SP3-2018-1566,SUSE-SLE-WE-12-SP3-2018-1566
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.1 (High)
Affected products
Recommended
93 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
93 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.6 (Medium)
Affected products
Recommended
93 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
93 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
93 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
82 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.143 to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-5390 aka \u0027SegmentSmack\u0027: Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bnc#1102340).\n- CVE-2018-14734: drivers/infiniband/core/ucma.c in the Linux kernel allowed ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allowed attackers to cause a denial of service (use-after-free) (bnc#1103119).\n- CVE-2017-18344: The timer_create syscall implementation in kernel/time/posix-timers.c didn\u0027t properly validate the sigevent-\u003esigev_notify field, which lead to out-of-bounds access in the show_timer function (called when /proc/$PID/timers is read). This allowed userspace applications to read arbitrary kernel memory (on a kernel built with CONFIG_POSIX_TIMERS and CONFIG_CHECKPOINT_RESTORE) (bnc#1102851 bnc#1103580).\n- CVE-2018-3620: Local attackers on baremetal systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data. (bnc#1087081).\n- CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data, even from other virtual machines or the host system. (bnc#1089343).\n\nThe following non-security bugs were fixed:\n\n- Add support for 5,25,50, and 100G to 802.3ad bonding driver (bsc#1096978)\n- ahci: Disable LPM on Lenovo 50 series laptops with a too old BIOS (bnc#1012382).\n- arm64: do not open code page table entry creation (bsc#1102197).\n- arm64: kpti: Use early_param for kpti= command-line option (bsc#1102188).\n- arm64: Make sure permission updates happen for pmd/pud (bsc#1102197).\n- atm: zatm: Fix potential Spectre v1 (bnc#1012382).\n- bcm63xx_enet: correct clock usage (bnc#1012382).\n- bcm63xx_enet: do not write to random DMA channel on BCM6345 (bnc#1012382).\n- blacklist 9fb8d5dc4b64 (\u0027stop_machine: Disable preemption when waking two stopper threads\u0027) Preemption is already disabled inside cpu_stop_queue_two_works() in SLE12-SP3 because it does not have commit 6a19005157c4 (\u0027stop_machine: Do not disable preemption in stop_two_cpus()\u0027)\n- block: copy ioprio in __bio_clone_fast() (bsc#1082653).\n- bpf: fix loading of BPF_MAXINSNS sized programs (bsc#1012382).\n- bpf, x64: fix memleak when not converging after image (bsc#1012382).\n- cachefiles: Fix missing clear of the CACHEFILES_OBJECT_ACTIVE flag (bsc#1099858).\n- cachefiles: Fix refcounting bug in backing-file read monitoring (bsc#1099858).\n- cachefiles: Wait rather than BUG\u0027ing on \u0027Unexpected object collision\u0027 (bsc#1099858).\n- cifs: fix bad/NULL ptr dereferencing in SMB2_sess_setup() (bsc#1090123).\n- compiler, clang: always inline when CONFIG_OPTIMIZE_INLINING is disabled (bnc#1012382).\n- compiler, clang: properly override \u0027inline\u0027 for clang (bnc#1012382).\n- compiler, clang: suppress warning for unused static inline functions (bnc#1012382).\n- compiler-gcc.h: Add __attribute__((gnu_inline)) to all inline declarations (bnc#1012382).\n- cpu/hotplug: Add sysfs state interface (bsc#1089343).\n- cpu/hotplug: Provide knobs to control SMT (bsc#1089343).\n- cpu/hotplug: Split do_cpu_down() (bsc#1089343).\n- crypto: crypto4xx - fix crypto4xx_build_pdr, crypto4xx_build_sdr leak (bnc#1012382).\n- crypto: crypto4xx - remove bad list_del (bnc#1012382).\n- drm/msm: Fix possible null dereference on failure of get_pages() (bsc#1102394).\n- drm: re-enable error handling (bsc#1103884).\n- fscache: Allow cancelled operations to be enqueued (bsc#1099858).\n- fscache: Fix reference overput in fscache_attach_object() error handling (bsc#1099858).\n- hid: usbhid: add quirk for innomedia INNEX GENESIS/ATARI adapter (bnc#1012382).\n- ibmasm: do not write out of bounds in read handler (bnc#1012382).\n- ibmvnic: Fix error recovery on login failure (bsc#1101789).\n- iw_cxgb4: correctly enforce the max reg_mr depth (bnc#1012382).\n- kabi protect includes in include/linux/inet.h (bsc#1095643).\n- KABI protect net/core/utils.c includes (bsc#1095643).\n- kABI: protect struct loop_device (kabi).\n- kABI: reintroduce __static_cpu_has_safe (kabi).\n- kbuild: fix # escaping in .cmd files for future Make (bnc#1012382).\n- keys: DNS: fix parsing multiple options (bnc#1012382).\n- kvm: arm/arm64: Drop resource size check for GICV window (bsc#1102215).\n- kvm: arm/arm64: Set dist-\u003espis to NULL after kfree (bsc#1102214).\n- loop: add recursion validation to LOOP_CHANGE_FD (bnc#1012382).\n- loop: remember whether sysfs_create_group() was done (bnc#1012382).\n- mmc: dw_mmc: fix card threshold control configuration (bsc#1102203).\n- mm: check VMA flags to avoid invalid PROT_NONE NUMA balancing (bsc#1097771).\n- net: cxgb3_main: fix potential Spectre v1 (bnc#1012382).\n- net: dccp: avoid crash in ccid3_hc_rx_send_feedback() (bnc#1012382).\n- net: dccp: switch rx_tstamp_last_feedback to monotonic clock (bnc#1012382).\n- netfilter: ebtables: reject non-bridge targets (bnc#1012382).\n- netfilter: nf_queue: augment nfqa_cfg_policy (bnc#1012382).\n- netfilter: x_tables: initialise match/target check parameter struct (bnc#1012382).\n- net/mlx5: Fix command interface race in polling mode (bnc#1012382).\n- net/mlx5: Fix incorrect raw command length parsing (bnc#1012382).\n- net: mvneta: fix the Rx desc DMA address in the Rx path (bsc#1102207).\n- net/nfc: Avoid stalls when nfc_alloc_send_skb() returned NULL (bnc#1012382).\n- net: off by one in inet6_pton() (bsc#1095643).\n- net: phy: marvell: Use strlcpy() for ethtool::get_strings (bsc#1102205).\n- net_sched: blackhole: tell upper qdisc about dropped packets (bnc#1012382).\n- net: sungem: fix rx checksum support (bnc#1012382).\n- net/utils: generic inet_pton_with_scope helper (bsc#1095643).\n- nvme-rdma: Check remotely invalidated rkey matches our expected rkey (bsc#1092001).\n- nvme-rdma: default MR page size to 4k (bsc#1092001).\n- nvme-rdma: do not complete requests before a send work request has completed (bsc#1092001).\n- nvme-rdma: do not suppress send completions (bsc#1092001).\n- nvme-rdma: Fix command completion race at error recovery (bsc#1090435).\n- nvme-rdma: make nvme_rdma_[create|destroy]_queue_ib symmetrical (bsc#1092001).\n- nvme-rdma: use inet_pton_with_scope helper (bsc#1095643).\n- nvme-rdma: Use mr pool (bsc#1092001).\n- nvme-rdma: wait for local invalidation before completing a request (bsc#1092001).\n- ocfs2: subsystem.su_mutex is required while accessing the item-\u003eci_parent (bnc#1012382).\n- pci: ibmphp: Fix use-before-set in get_max_bus_speed() (bsc#1100132).\n- perf tools: Move syscall number fallbacks from perf-sys.h to tools/arch/x86/include/asm/ (bnc#1012382).\n- pm / hibernate: Fix oops at snapshot_write() (bnc#1012382).\n- powerpc/64: Initialise thread_info for emergency stacks (bsc#1094244, bsc#1100930, bsc#1102683).\n- qed: Limit msix vectors in kdump kernel to the minimum required count (bnc#1012382).\n- r8152: napi hangup fix after disconnect (bnc#1012382).\n- rdma/ucm: Mark UCM interface as BROKEN (bnc#1012382).\n- rds: avoid unenecessary cong_update in loop transport (bnc#1012382).\n- Revert \u0027sit: reload iphdr in ipip6_rcv\u0027 (bnc#1012382).\n- Revert \u0027x86/cpufeature: Move some of the scattered feature bits to x86_capability\u0027 (kabi).\n- Revert \u0027x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6\u0027 (kabi).\n- rtlwifi: rtl8821ae: fix firmware is not ready to run (bnc#1012382).\n- s390/qeth: fix error handling in adapter command callbacks (bnc#1103745, LTC#169699).\n- sched/smt: Update sched_smt_present at runtime (bsc#1089343).\n- smsc75xx: Add workaround for gigabit link up hardware errata (bsc#1100132).\n- smsc95xx: Configure pause time to 0xffff when tx flow control enabled (bsc#1085536).\n- tcp: fix Fast Open key endianness (bnc#1012382).\n- tcp: prevent bogus FRTO undos with non-SACK flows (bnc#1012382).\n- tools build: fix # escaping in .cmd files for future Make (bnc#1012382).\n- uprobes/x86: Remove incorrect WARN_ON() in uprobe_init_insn() (bnc#1012382).\n- usb: core: handle hub C_PORT_OVER_CURRENT condition (bsc#1100132).\n- usb: quirks: add delay quirks for Corsair Strafe (bnc#1012382).\n- usb: serial: ch341: fix type promotion bug in ch341_control_in() (bnc#1012382).\n- usb: serial: cp210x: add another USB ID for Qivicon ZigBee stick (bnc#1012382).\n- usb: serial: keyspan_pda: fix modem-status error handling (bnc#1012382).\n- usb: serial: mos7840: fix status-register error handling (bnc#1012382).\n- usb: yurex: fix out-of-bounds uaccess in read handler (bnc#1012382).\n- vfio: platform: Fix reset module leak in error path (bsc#1102211).\n- vhost_net: validate sock before trying to put its fd (bnc#1012382).\n- vmw_balloon: fix inflation with batching (bnc#1012382).\n- x86/alternatives: Add an auxilary section (bnc#1012382).\n- x86/alternatives: Discard dynamic check after init (bnc#1012382).\n- x86/apic: Ignore secondary threads if nosmt=force (bsc#1089343).\n- x86/asm: Add _ASM_ARG* constants for argument registers to \u003casm/asm.h\u003e (bnc#1012382).\n- x86/boot: Simplify kernel load address alignment check (bnc#1012382).\n- x86/CPU/AMD: Do not check CPUID max ext level before parsing SMP info (bsc#1089343).\n- x86/cpu/AMD: Evaluate smp_num_siblings early (bsc#1089343).\n- x86/CPU/AMD: Move TOPOEXT reenablement before reading smp_num_siblings (bsc#1089343). Update config files.\n- x86/cpu/AMD: Remove the pointless detect_ht() call (bsc#1089343).\n- x86/cpu/common: Provide detect_ht_early() (bsc#1089343).\n- x86/cpufeature: Add helper macro for mask check macros (bnc#1012382).\n- x86/cpufeature: Carve out X86_FEATURE_* (bnc#1012382).\n- x86/cpufeature: Get rid of the non-asm goto variant (bnc#1012382).\n- x86/cpufeature: Make sure DISABLED/REQUIRED macros are updated (bnc#1012382).\n- x86/cpufeature: Move some of the scattered feature bits to x86_capability (bnc#1012382).\n- x86/cpufeature: Replace the old static_cpu_has() with safe variant (bnc#1012382).\n- x86/cpufeature: Speed up cpu_feature_enabled() (bnc#1012382).\n- x86/cpufeature: Update cpufeaure macros (bnc#1012382).\n- x86/cpu/intel: Evaluate smp_num_siblings early (bsc#1089343).\n- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (bnc#1012382).\n- x86/cpu: Provide a config option to disable static_cpu_has (bnc#1012382).\n- x86/cpu: Remove the pointless CPU printout (bsc#1089343).\n- x86/cpu/topology: Provide detect_extended_topology_early() (bsc#1089343).\n- x86/fpu: Add an XSTATE_OP() macro (bnc#1012382).\n- x86/fpu: Get rid of xstate_fault() (bnc#1012382).\n- x86/headers: Do not include asm/processor.h in asm/atomic.h (bnc#1012382).\n- x86/mm/pkeys: Fix mismerge of protection keys CPUID bits (bnc#1012382).\n- x86/mm: Simplify p[g4um]d_page() macros (1087081).\n- x86/smpboot: Do not use smp_num_siblings in __max_logical_packages calculation (bsc#1089343).\n- x86/smp: Provide topology_is_primary_thread() (bsc#1089343).\n- x86/topology: Add topology_max_smt_threads() (bsc#1089343).\n- x86/topology: Provide topology_smt_supported() (bsc#1089343).\n- x86/vdso: Use static_cpu_has() (bnc#1012382).\n- xen/grant-table: log the lack of grants (bnc#1085042).\n- xen-netfront: Fix mismatched rtnl_unlock (bnc#1101658).\n- xen-netfront: Update features after registering netdev (bnc#1101658).\n- xhci: xhci-mem: off by one in xhci_stream_id_to_ring() (bnc#1012382).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-SP3-2018-1566,SUSE-SLE-HA-12-SP3-2018-1566,SUSE-SLE-Live-Patching-12-SP3-2018-1566,SUSE-SLE-SDK-12-SP3-2018-1566,SUSE-SLE-SERVER-12-SP3-2018-1566,SUSE-SLE-WE-12-SP3-2018-1566",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_2328-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:2328-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20182328-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:2328-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-August/004414.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012382",
"url": "https://bugzilla.suse.com/1012382"
},
{
"category": "self",
"summary": "SUSE Bug 1082653",
"url": "https://bugzilla.suse.com/1082653"
},
{
"category": "self",
"summary": "SUSE Bug 1085042",
"url": "https://bugzilla.suse.com/1085042"
},
{
"category": "self",
"summary": "SUSE Bug 1085536",
"url": "https://bugzilla.suse.com/1085536"
},
{
"category": "self",
"summary": "SUSE Bug 1087081",
"url": "https://bugzilla.suse.com/1087081"
},
{
"category": "self",
"summary": "SUSE Bug 1089343",
"url": "https://bugzilla.suse.com/1089343"
},
{
"category": "self",
"summary": "SUSE Bug 1090123",
"url": "https://bugzilla.suse.com/1090123"
},
{
"category": "self",
"summary": "SUSE Bug 1090435",
"url": "https://bugzilla.suse.com/1090435"
},
{
"category": "self",
"summary": "SUSE Bug 1092001",
"url": "https://bugzilla.suse.com/1092001"
},
{
"category": "self",
"summary": "SUSE Bug 1094244",
"url": "https://bugzilla.suse.com/1094244"
},
{
"category": "self",
"summary": "SUSE Bug 1095643",
"url": "https://bugzilla.suse.com/1095643"
},
{
"category": "self",
"summary": "SUSE Bug 1096978",
"url": "https://bugzilla.suse.com/1096978"
},
{
"category": "self",
"summary": "SUSE Bug 1097771",
"url": "https://bugzilla.suse.com/1097771"
},
{
"category": "self",
"summary": "SUSE Bug 1099858",
"url": "https://bugzilla.suse.com/1099858"
},
{
"category": "self",
"summary": "SUSE Bug 1100132",
"url": "https://bugzilla.suse.com/1100132"
},
{
"category": "self",
"summary": "SUSE Bug 1100930",
"url": "https://bugzilla.suse.com/1100930"
},
{
"category": "self",
"summary": "SUSE Bug 1101658",
"url": "https://bugzilla.suse.com/1101658"
},
{
"category": "self",
"summary": "SUSE Bug 1101789",
"url": "https://bugzilla.suse.com/1101789"
},
{
"category": "self",
"summary": "SUSE Bug 1102188",
"url": "https://bugzilla.suse.com/1102188"
},
{
"category": "self",
"summary": "SUSE Bug 1102197",
"url": "https://bugzilla.suse.com/1102197"
},
{
"category": "self",
"summary": "SUSE Bug 1102203",
"url": "https://bugzilla.suse.com/1102203"
},
{
"category": "self",
"summary": "SUSE Bug 1102205",
"url": "https://bugzilla.suse.com/1102205"
},
{
"category": "self",
"summary": "SUSE Bug 1102207",
"url": "https://bugzilla.suse.com/1102207"
},
{
"category": "self",
"summary": "SUSE Bug 1102211",
"url": "https://bugzilla.suse.com/1102211"
},
{
"category": "self",
"summary": "SUSE Bug 1102214",
"url": "https://bugzilla.suse.com/1102214"
},
{
"category": "self",
"summary": "SUSE Bug 1102215",
"url": "https://bugzilla.suse.com/1102215"
},
{
"category": "self",
"summary": "SUSE Bug 1102340",
"url": "https://bugzilla.suse.com/1102340"
},
{
"category": "self",
"summary": "SUSE Bug 1102394",
"url": "https://bugzilla.suse.com/1102394"
},
{
"category": "self",
"summary": "SUSE Bug 1102683",
"url": "https://bugzilla.suse.com/1102683"
},
{
"category": "self",
"summary": "SUSE Bug 1102851",
"url": "https://bugzilla.suse.com/1102851"
},
{
"category": "self",
"summary": "SUSE Bug 1103119",
"url": "https://bugzilla.suse.com/1103119"
},
{
"category": "self",
"summary": "SUSE Bug 1103580",
"url": "https://bugzilla.suse.com/1103580"
},
{
"category": "self",
"summary": "SUSE Bug 1103745",
"url": "https://bugzilla.suse.com/1103745"
},
{
"category": "self",
"summary": "SUSE Bug 1103884",
"url": "https://bugzilla.suse.com/1103884"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18344 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18344/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-14734 page",
"url": "https://www.suse.com/security/cve/CVE-2018-14734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-3620 page",
"url": "https://www.suse.com/security/cve/CVE-2018-3620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-3646 page",
"url": "https://www.suse.com/security/cve/CVE-2018-3646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5390 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5390/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2018-08-14T17:02:07Z",
"generator": {
"date": "2018-08-14T17:02:07Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:2328-1",
"initial_release_date": "2018-08-14T17:02:07Z",
"revision_history": [
{
"date": "2018-08-14T17:02:07Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "dpdk-devel-16.11.6-8.7.2.aarch64",
"product": {
"name": "dpdk-devel-16.11.6-8.7.2.aarch64",
"product_id": "dpdk-devel-16.11.6-8.7.2.aarch64"
}
},
{
"category": "product_version",
"name": "dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"product": {
"name": "dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"product_id": "dpdk-thunderx-devel-16.11.6-8.7.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.143-94.47.1.aarch64",
"product": {
"name": "kernel-obs-build-4.4.143-94.47.1.aarch64",
"product_id": "kernel-obs-build-4.4.143-94.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "dpdk-16.11.6-8.7.2.aarch64",
"product": {
"name": "dpdk-16.11.6-8.7.2.aarch64",
"product_id": "dpdk-16.11.6-8.7.2.aarch64"
}
},
{
"category": "product_version",
"name": "dpdk-thunderx-16.11.6-8.7.2.aarch64",
"product": {
"name": "dpdk-thunderx-16.11.6-8.7.2.aarch64",
"product_id": "dpdk-thunderx-16.11.6-8.7.2.aarch64"
}
},
{
"category": "product_version",
"name": "dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"product": {
"name": "dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"product_id": "dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64"
}
},
{
"category": "product_version",
"name": "dpdk-tools-16.11.6-8.7.2.aarch64",
"product": {
"name": "dpdk-tools-16.11.6-8.7.2.aarch64",
"product_id": "dpdk-tools-16.11.6-8.7.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.4.143-94.47.1.aarch64",
"product": {
"name": "kernel-default-4.4.143-94.47.1.aarch64",
"product_id": "kernel-default-4.4.143-94.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.143-94.47.1.aarch64",
"product": {
"name": "kernel-default-base-4.4.143-94.47.1.aarch64",
"product_id": "kernel-default-base-4.4.143-94.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.143-94.47.1.aarch64",
"product": {
"name": "kernel-default-devel-4.4.143-94.47.1.aarch64",
"product_id": "kernel-default-devel-4.4.143-94.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.143-94.47.1.aarch64",
"product": {
"name": "kernel-syms-4.4.143-94.47.1.aarch64",
"product_id": "kernel-syms-4.4.143-94.47.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-4.4.143-94.47.1.noarch",
"product": {
"name": "kernel-devel-4.4.143-94.47.1.noarch",
"product_id": "kernel-devel-4.4.143-94.47.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-4.4.143-94.47.1.noarch",
"product": {
"name": "kernel-macros-4.4.143-94.47.1.noarch",
"product_id": "kernel-macros-4.4.143-94.47.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-4.4.143-94.47.1.noarch",
"product": {
"name": "kernel-source-4.4.143-94.47.1.noarch",
"product_id": "kernel-source-4.4.143-94.47.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-4.4.143-94.47.1.noarch",
"product": {
"name": "kernel-docs-4.4.143-94.47.1.noarch",
"product_id": "kernel-docs-4.4.143-94.47.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"product_id": "cluster-md-kmp-default-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"product": {
"name": "dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"product_id": "dlm-kmp-default-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"product_id": "gfs2-kmp-default-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"product_id": "ocfs2-kmp-default-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"product": {
"name": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"product_id": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dpdk-devel-16.11.6-8.7.2.ppc64le",
"product": {
"name": "dpdk-devel-16.11.6-8.7.2.ppc64le",
"product_id": "dpdk-devel-16.11.6-8.7.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.143-94.47.1.ppc64le",
"product": {
"name": "kernel-obs-build-4.4.143-94.47.1.ppc64le",
"product_id": "kernel-obs-build-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dpdk-16.11.6-8.7.2.ppc64le",
"product": {
"name": "dpdk-16.11.6-8.7.2.ppc64le",
"product_id": "dpdk-16.11.6-8.7.2.ppc64le"
}
},
{
"category": "product_version",
"name": "dpdk-tools-16.11.6-8.7.2.ppc64le",
"product": {
"name": "dpdk-tools-16.11.6-8.7.2.ppc64le",
"product_id": "dpdk-tools-16.11.6-8.7.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-4.4.143-94.47.1.ppc64le",
"product": {
"name": "kernel-default-4.4.143-94.47.1.ppc64le",
"product_id": "kernel-default-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.143-94.47.1.ppc64le",
"product": {
"name": "kernel-default-base-4.4.143-94.47.1.ppc64le",
"product_id": "kernel-default-base-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.143-94.47.1.ppc64le",
"product": {
"name": "kernel-default-devel-4.4.143-94.47.1.ppc64le",
"product_id": "kernel-default-devel-4.4.143-94.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.143-94.47.1.ppc64le",
"product": {
"name": "kernel-syms-4.4.143-94.47.1.ppc64le",
"product_id": "kernel-syms-4.4.143-94.47.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"product": {
"name": "cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"product_id": "cluster-md-kmp-default-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.4.143-94.47.1.s390x",
"product": {
"name": "dlm-kmp-default-4.4.143-94.47.1.s390x",
"product_id": "dlm-kmp-default-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.4.143-94.47.1.s390x",
"product": {
"name": "gfs2-kmp-default-4.4.143-94.47.1.s390x",
"product_id": "gfs2-kmp-default-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"product": {
"name": "ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"product_id": "ocfs2-kmp-default-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.143-94.47.1.s390x",
"product": {
"name": "kernel-obs-build-4.4.143-94.47.1.s390x",
"product_id": "kernel-obs-build-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-4.4.143-94.47.1.s390x",
"product": {
"name": "kernel-default-4.4.143-94.47.1.s390x",
"product_id": "kernel-default-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.143-94.47.1.s390x",
"product": {
"name": "kernel-default-base-4.4.143-94.47.1.s390x",
"product_id": "kernel-default-base-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.143-94.47.1.s390x",
"product": {
"name": "kernel-default-devel-4.4.143-94.47.1.s390x",
"product_id": "kernel-default-devel-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-man-4.4.143-94.47.1.s390x",
"product": {
"name": "kernel-default-man-4.4.143-94.47.1.s390x",
"product_id": "kernel-default-man-4.4.143-94.47.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.143-94.47.1.s390x",
"product": {
"name": "kernel-syms-4.4.143-94.47.1.s390x",
"product_id": "kernel-syms-4.4.143-94.47.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-4.4.143-94.47.1.x86_64",
"product": {
"name": "kernel-default-4.4.143-94.47.1.x86_64",
"product_id": "kernel-default-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.143-94.47.1.x86_64",
"product": {
"name": "kernel-default-devel-4.4.143-94.47.1.x86_64",
"product_id": "kernel-default-devel-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.4.143-94.47.1.x86_64",
"product": {
"name": "kernel-default-extra-4.4.143-94.47.1.x86_64",
"product_id": "kernel-default-extra-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.143-94.47.1.x86_64",
"product": {
"name": "kernel-syms-4.4.143-94.47.1.x86_64",
"product_id": "kernel-syms-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"product_id": "cluster-md-kmp-default-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.4.143-94.47.1.x86_64",
"product": {
"name": "dlm-kmp-default-4.4.143-94.47.1.x86_64",
"product_id": "dlm-kmp-default-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"product": {
"name": "gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"product_id": "gfs2-kmp-default-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"product_id": "ocfs2-kmp-default-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"product": {
"name": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"product_id": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "dpdk-devel-16.11.6-8.7.2.x86_64",
"product": {
"name": "dpdk-devel-16.11.6-8.7.2.x86_64",
"product_id": "dpdk-devel-16.11.6-8.7.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.143-94.47.1.x86_64",
"product": {
"name": "kernel-obs-build-4.4.143-94.47.1.x86_64",
"product_id": "kernel-obs-build-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "dpdk-16.11.6-8.7.2.x86_64",
"product": {
"name": "dpdk-16.11.6-8.7.2.x86_64",
"product_id": "dpdk-16.11.6-8.7.2.x86_64"
}
},
{
"category": "product_version",
"name": "dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"product": {
"name": "dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"product_id": "dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64"
}
},
{
"category": "product_version",
"name": "dpdk-tools-16.11.6-8.7.2.x86_64",
"product": {
"name": "dpdk-tools-16.11.6-8.7.2.x86_64",
"product_id": "dpdk-tools-16.11.6-8.7.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.143-94.47.1.x86_64",
"product": {
"name": "kernel-default-base-4.4.143-94.47.1.x86_64",
"product_id": "kernel-default-base-4.4.143-94.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "lttng-modules-2.7.1-8.4.2.x86_64",
"product": {
"name": "lttng-modules-2.7.1-8.4.2.x86_64",
"product_id": "lttng-modules-2.7.1-8.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"product": {
"name": "lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"product_id": "lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Availability Extension 12 SP3",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-ha:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-extra-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-devel-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-macros-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-source-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x"
},
"product_reference": "cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le"
},
"product_reference": "dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x"
},
"product_reference": "dlm-kmp-default-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64"
},
"product_reference": "dlm-kmp-default-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x"
},
"product_reference": "gfs2-kmp-default-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64"
},
"product_reference": "gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x"
},
"product_reference": "ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
"product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le"
},
"product_reference": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64"
},
"product_reference": "kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-devel-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-devel-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-devel-16.11.6-8.7.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le"
},
"product_reference": "dpdk-devel-16.11.6-8.7.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-devel-16.11.6-8.7.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64"
},
"product_reference": "dpdk-devel-16.11.6-8.7.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-thunderx-devel-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-docs-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-obs-build-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-obs-build-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-obs-build-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-obs-build-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-16.11.6-8.7.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le"
},
"product_reference": "dpdk-16.11.6-8.7.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-16.11.6-8.7.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64"
},
"product_reference": "dpdk-16.11.6-8.7.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64"
},
"product_reference": "dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-thunderx-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-thunderx-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64"
},
"product_reference": "dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-tools-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-tools-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-tools-16.11.6-8.7.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le"
},
"product_reference": "dpdk-tools-16.11.6-8.7.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-tools-16.11.6-8.7.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64"
},
"product_reference": "dpdk-tools-16.11.6-8.7.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-default-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-default-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-man-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-devel-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-macros-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-source-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lttng-modules-2.7.1-8.4.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64"
},
"product_reference": "lttng-modules-2.7.1-8.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64"
},
"product_reference": "lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-16.11.6-8.7.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le"
},
"product_reference": "dpdk-16.11.6-8.7.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-16.11.6-8.7.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64"
},
"product_reference": "dpdk-16.11.6-8.7.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64"
},
"product_reference": "dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-thunderx-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-thunderx-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64"
},
"product_reference": "dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-tools-16.11.6-8.7.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64"
},
"product_reference": "dpdk-tools-16.11.6-8.7.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-tools-16.11.6-8.7.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le"
},
"product_reference": "dpdk-tools-16.11.6-8.7.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dpdk-tools-16.11.6-8.7.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64"
},
"product_reference": "dpdk-tools-16.11.6-8.7.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-default-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-default-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-base-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-devel-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-default-man-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-devel-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-macros-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.4.143-94.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch"
},
"product_reference": "kernel-source-4.4.143-94.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-syms-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lttng-modules-2.7.1-8.4.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64"
},
"product_reference": "lttng-modules-2.7.1-8.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64"
},
"product_reference": "lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-4.4.143-94.47.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
},
"product_reference": "kernel-default-extra-4.4.143-94.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-18344",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18344"
}
],
"notes": [
{
"category": "general",
"text": "The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn\u0027t properly validate the sigevent-\u003esigev_notify field, which leads to out-of-bounds access in the show_timer function (called when /proc/$PID/timers is read). This allows userspace applications to read arbitrary kernel memory (on a kernel built with CONFIG_POSIX_TIMERS and CONFIG_CHECKPOINT_RESTORE).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18344",
"url": "https://www.suse.com/security/cve/CVE-2017-18344"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-18344",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1102851 for CVE-2017-18344",
"url": "https://bugzilla.suse.com/1102851"
},
{
"category": "external",
"summary": "SUSE Bug 1103203 for CVE-2017-18344",
"url": "https://bugzilla.suse.com/1103203"
},
{
"category": "external",
"summary": "SUSE Bug 1103580 for CVE-2017-18344",
"url": "https://bugzilla.suse.com/1103580"
},
{
"category": "external",
"summary": "SUSE Bug 1215674 for CVE-2017-18344",
"url": "https://bugzilla.suse.com/1215674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-14T17:02:07Z",
"details": "moderate"
}
],
"title": "CVE-2017-18344"
},
{
"cve": "CVE-2018-14734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-14734"
}
],
"notes": [
{
"category": "general",
"text": "drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-14734",
"url": "https://www.suse.com/security/cve/CVE-2018-14734"
},
{
"category": "external",
"summary": "SUSE Bug 1103119 for CVE-2018-14734",
"url": "https://bugzilla.suse.com/1103119"
},
{
"category": "external",
"summary": "SUSE Bug 1131390 for CVE-2018-14734",
"url": "https://bugzilla.suse.com/1131390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-14T17:02:07Z",
"details": "low"
}
],
"title": "CVE-2018-14734"
},
{
"cve": "CVE-2018-3620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-3620"
}
],
"notes": [
{
"category": "general",
"text": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-3620",
"url": "https://www.suse.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "SUSE Bug 1087078 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1087078"
},
{
"category": "external",
"summary": "SUSE Bug 1087081 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1087081"
},
{
"category": "external",
"summary": "SUSE Bug 1089343 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1089343"
},
{
"category": "external",
"summary": "SUSE Bug 1090340 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1090340"
},
{
"category": "external",
"summary": "SUSE Bug 1091107 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1091107"
},
{
"category": "external",
"summary": "SUSE Bug 1099306 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1099306"
},
{
"category": "external",
"summary": "SUSE Bug 1104894 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1104894"
},
{
"category": "external",
"summary": "SUSE Bug 1136865 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1136865"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-14T17:02:07Z",
"details": "moderate"
}
],
"title": "CVE-2018-3620"
},
{
"cve": "CVE-2018-3646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-3646"
}
],
"notes": [
{
"category": "general",
"text": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-3646",
"url": "https://www.suse.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "SUSE Bug 1087078 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1087078"
},
{
"category": "external",
"summary": "SUSE Bug 1087081 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1087081"
},
{
"category": "external",
"summary": "SUSE Bug 1089343 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1089343"
},
{
"category": "external",
"summary": "SUSE Bug 1091107 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1091107"
},
{
"category": "external",
"summary": "SUSE Bug 1099306 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1099306"
},
{
"category": "external",
"summary": "SUSE Bug 1104365 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1104365"
},
{
"category": "external",
"summary": "SUSE Bug 1104894 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1104894"
},
{
"category": "external",
"summary": "SUSE Bug 1106548 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1106548"
},
{
"category": "external",
"summary": "SUSE Bug 1113534 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1113534"
},
{
"category": "external",
"summary": "SUSE Bug 1136865 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1136865"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1178658"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-14T17:02:07Z",
"details": "important"
}
],
"title": "CVE-2018-3646"
},
{
"cve": "CVE-2018-5390",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5390"
}
],
"notes": [
{
"category": "general",
"text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5390",
"url": "https://www.suse.com/security/cve/CVE-2018-5390"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-5390",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1102340 for CVE-2018-5390",
"url": "https://bugzilla.suse.com/1102340"
},
{
"category": "external",
"summary": "SUSE Bug 1102682 for CVE-2018-5390",
"url": "https://bugzilla.suse.com/1102682"
},
{
"category": "external",
"summary": "SUSE Bug 1103097 for CVE-2018-5390",
"url": "https://bugzilla.suse.com/1103097"
},
{
"category": "external",
"summary": "SUSE Bug 1103098 for CVE-2018-5390",
"url": "https://bugzilla.suse.com/1103098"
},
{
"category": "external",
"summary": "SUSE Bug 1156434 for CVE-2018-5390",
"url": "https://bugzilla.suse.com/1156434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_143-94_47-default-1-4.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-thunderx-kmp-default-16.11.6_k4.4.143_94.47-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dpdk-tools-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-2.7.1-8.4.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:lttng-modules-kmp-default-2.7.1_k4.4.143_94.47-8.4.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-devel-16.11.6-8.7.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:dpdk-thunderx-devel-16.11.6-8.7.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.143-94.47.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.143-94.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.143-94.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-14T17:02:07Z",
"details": "moderate"
}
],
"title": "CVE-2018-5390"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…