CVE-2022-40982

Updated: 2024-11-30 03:31:28.773708

Description:

Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 6.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU microcode_ctl 20220809 6.5 MEDIUM Already Fixed 2024-05-15 10:30:39
AlmaLinux 9.2 ESU kernel 5.14.0 6.5 MEDIUM Released CLSA-2024:1727352561 2024-09-26 12:56:29
AlmaLinux 9.2 FIPS kernel 5.14.0 6.5 MEDIUM Released CLSA-2024:1727351493 2024-09-26 12:55:24
CentOS 6 ELS microcode_ctl 1.17-33.29 6.5 MEDIUM Released CLSA-2023:1693410662 2023-09-13 09:29:22
CentOS 6 ELS kernel 2.6.32 6.5 MEDIUM Ignored 2023-10-09 05:07:35
CentOS 7 ELS microcode_ctl 2.1 6.5 MEDIUM Released CLSA-2023:1701444720 2023-12-01 13:14:20
CentOS 7 ELS kernel 3.10.0 6.5 MEDIUM Ignored 2024-06-24 11:32:51
CentOS 8.4 ELS kernel 4.18.0 6.5 MEDIUM Ignored 2024-06-24 11:32:51
CentOS 8.4 ELS microcode_ctl 20210216-1 6.5 MEDIUM Already Fixed 2024-05-21 10:24:18
CentOS 8.5 ELS kernel 4.18.0 6.5 MEDIUM Ignored 2024-06-24 11:32:51
Total: 22