CVE-2023-20592

Updated: 2024-02-10 08:40:52.66523

Description:

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 6.5

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU linux-firmware 20230310 6.5 MEDIUM Ignored 2024-02-12 04:08:37
CentOS 6 ELS linux-firmware 20171128-56 6.5 MEDIUM Ignored 2024-02-12 04:08:37
CentOS 7 ELS linux-firmware 20200421-80 6.5 MEDIUM In Progress 2024-02-21 08:26:22
CentOS 8.4 ELS linux-firmware 20201218-102 6.5 MEDIUM Ignored 2024-02-12 04:08:37
CentOS 8.5 ELS linux-firmware 20210702-103 6.5 MEDIUM Ignored 2024-02-12 04:08:37
CloudLinux 6 ELS linux-firmware 20171128-56 6.5 MEDIUM Ignored 2024-02-12 04:08:37
Oracle Linux 6 ELS linux-firmware 20171128-56 6.5 MEDIUM Ignored 2024-02-12 04:08:37
Ubuntu 16.04 ELS linux-firmware 1.157.23 6.5 MEDIUM Ignored 2024-02-12 08:26:09
Ubuntu 18.04 ELS linux-firmware 1.173.21 6.5 MEDIUM Ignored 2024-02-12 08:26:09