5.5

CVE-2022-49611

x86/speculation: Fill RSB on vmexit for IBRS

In the Linux kernel, the following vulnerability has been resolved:

x86/speculation: Fill RSB on vmexit for IBRS

Prevent RSB underflow/poisoning attacks with RSB.  While at it, add a
bunch of comments to attempt to document the current state of tribal
knowledge about RSB attacks and what exactly is being mitigated.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.14.297
LinuxLinux Kernel Version >= 4.15 < 4.19.266
LinuxLinux Kernel Version >= 4.20 < 5.4.217
LinuxLinux Kernel Version >= 5.5 < 5.10.133
LinuxLinux Kernel Version >= 5.11 < 5.15.57
LinuxLinux Kernel Version >= 5.16 < 5.18.14
LinuxLinux Kernel Version5.19 Updaterc1
LinuxLinux Kernel Version5.19 Updaterc2
LinuxLinux Kernel Version5.19 Updaterc3
LinuxLinux Kernel Version5.19 Updaterc4
LinuxLinux Kernel Version5.19 Updaterc5
LinuxLinux Kernel Version5.19 Updaterc6
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.28% 0.194
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/17a9fc4a7b91f8599223631bb6ae6416bc0de1c0
Patch
https://git.kernel.org/stable/c/3d323b99ff5c8c57005184056d65f6af5b0479d8
Patch
https://git.kernel.org/stable/c/4d7f72b6e1bc630bec7e4cd51814bc2b092bf153
Patch
https://git.kernel.org/stable/c/8c38306e2e9257af4af2819aa287a4711ff36329
Patch
https://git.kernel.org/stable/c/8d5cff499a6d740c91ff37963907e0e983c37f0f
Patch
https://git.kernel.org/stable/c/9756bba28470722dacb79ffce554336dd1f6a6cd
Patch
https://git.kernel.org/stable/c/f744b88dfc201bf8092833ec70b23c720188b527
Patch