Updated: 2024-12-19 22:25:00.118126
Description:
A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems.
Links | NIST | CIRCL | RHEL | Ubuntu |
Severity | Score | |
---|---|---|
CVSS Version 2.x | NONE | 0 |
CVSS Version 3.x | MEDIUM | 4.7 |
OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
---|---|---|---|---|---|---|---|---|
AlmaLinux 9.2 ESU | kernel | 5.14.0 | 4.7 | MEDIUM | Needs Triage | 2024-10-30 03:54:31 | ||
AlmaLinux 9.2 FIPS | kernel | 5.14.0 | 4.7 | MEDIUM | Ignored | 2024-08-13 14:26:03 | ||
CentOS 6 ELS | kernel | 2.6.32 | 4.7 | MEDIUM | Ignored | 2024-08-13 14:26:03 | ||
CentOS 7 ELS | kernel | 3.10.0 | 4.7 | MEDIUM | Ignored | 2024-08-13 14:26:03 | ||
CentOS 8.4 ELS | kernel | 4.18.0 | 4.7 | MEDIUM | Ignored | 2024-08-20 12:20:23 | ||
CentOS 8.5 ELS | kernel | 4.18.0 | 4.7 | MEDIUM | Ignored | 2024-08-20 12:20:23 | ||
CentOS Stream 8 ELS | kernel | 4.18.0 | 4.7 | MEDIUM | Ignored | 2024-08-20 12:20:23 | ||
CloudLinux 6 ELS | kernel | 2.6.32 | 4.7 | MEDIUM | Ignored | 2024-08-13 14:26:03 | ||
CloudLinux 7 ELS | kernel | 3.10.0 | 4.7 | MEDIUM | Ignored | 2024-08-13 14:26:02 | ||
Oracle Linux 6 ELS | kernel | 2.6.32 | 4.7 | MEDIUM | Ignored | 2024-08-13 14:26:02 |