Description

Observable response discrepancy in floating-point operations for some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

Related CPE's

a

intel

brand_verification_tool

Vulnerable

o

fedoraproject

fedora

2

o

intel

pentium_processors_firmware

-

Vulnerable

h

intel

pentium_processors

-

o

intel

celeron_processors_firmware

-

Vulnerable

h

intel

celeron_processors

-

o

intel

xeon_processors_firmware

-

Vulnerable

h

intel

xeon_processors

-

o

intel

core_processors_firmware

-

Vulnerable

h

intel

core_processors

-

o

intel

itanium_processors_firmware

-

Vulnerable

h

intel

itanium_processors

-

References

http://www.openwall.com/lists/oss-security/2021/06/08/7

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2021/06/09/2

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2021/06/10/1

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H36U6CNREC436W6GYO7QUMJIVEA35SCV/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVA2NY26MMXOODUMYZN5DCU3FXMBMBOB/

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00516.html

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00546.html

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-203

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

6.5 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-06-09T20:15:08.513

4 years ago

Last modified

2023-11-07T03:27:14.587

1 year ago