[FREEBSD:4E07D94F-75A5-11E8-85D1-A4BADB2F4699] FreeBSD -- Lazy FPU State Restore Information Disclosure
Severity
Medium
Affected Packages
1
CVEs
1
Problem Description:
A subset of Intel processors can allow a local thread
to infer data from another thread through a speculative
execution side channel when Lazy FPU state restore is
used.
Impact:
Any local thread can potentially read FPU state information
from other threads running on the host. This could include
cryptographic keys when the AES-NI CPU feature is present.
Package | Affected Version |
---|---|
pkg:freebsd/FreeBSD-kernel | < 11.1_11 |
- ID
- FREEBSD:4E07D94F-75A5-11E8-85D1-A4BADB2F4699
- Severity
- medium
- Severity from
- CVE-2018-3665
- URL
- http://vuxml.freebsd.org/freebsd/4e07d94f-75a5-11e8-85d1-a4badb2f4699.html
- Published
-
2018-06-21T00:00:00
(6 years ago) - Modified
-
2018-06-21T00:00:00
(6 years ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
-
- ALPINE:CVE-2018-3665
- DSA-4232-1
- ELSA-2018-1852
- ELSA-2018-2164
- ELSA-2018-4134
- ELSA-2018-4144
- ELSA-2018-4145
- FEDORA-2018-1a467757ce
- FEDORA-2018-683dfde81a
- FEDORA-2018-73dd8de892
- FEDORA-2018-915602df63
- FEDORA-2018-a7862a75f5
- FEDORA-2018-d3cb6f113c
- FEDORA-2018-f20a0cead5
- FEDORA-2018-fe24359b69
- FEDORA-2019-bce6498890
- RHSA-2018:1852
- RHSA-2018:1944
- RHSA-2018:2164
- SUSE-SU-2018:1761-1
- SUSE-SU-2018:1762-1
- SUSE-SU-2018:1772-1
- SUSE-SU-2018:1816-1
- SUSE-SU-2018:1821-1
- SUSE-SU-2018:1846-1
- SUSE-SU-2018:1849-1
- SUSE-SU-2018:1855-1
- SUSE-SU-2018:1855-2
- SUSE-SU-2018:1940-1
- SUSE-SU-2018:1942-1
- SUSE-SU-2018:1943-1
- SUSE-SU-2018:1944-1
- SUSE-SU-2018:1945-1
- SUSE-SU-2018:1946-1
- SUSE-SU-2018:1947-1
- SUSE-SU-2018:1948-1
- SUSE-SU-2018:1949-1
- SUSE-SU-2018:1981-1
- SUSE-SU-2018:2037-1
- SUSE-SU-2018:2048-1
- SUSE-SU-2018:2056-1
- SUSE-SU-2018:2059-1
- SUSE-SU-2018:2069-1
- SUSE-SU-2018:2081-1
- SUSE-SU-2018:2081-2
- SUSE-SU-2018:2086-1
- SUSE-SU-2018:2087-1
- SUSE-SU-2018:2088-1
- SUSE-SU-2018:2090-1
- SUSE-SU-2018:2091-1
- SUSE-SU-2018:2093-1
- SUSE-SU-2018:2094-1
- SUSE-SU-2018:2095-1
- SUSE-SU-2018:2096-1
- SUSE-SU-2018:2097-1
- SUSE-SU-2018:2098-1
- SUSE-SU-2018:2099-1
- SUSE-SU-2018:2100-1
- SUSE-SU-2018:2101-1
- SUSE-SU-2018:2102-1
- SUSE-SU-2018:2103-1
- SUSE-SU-2018:2104-1
- SUSE-SU-2018:2105-1
- SUSE-SU-2018:2106-1
- SUSE-SU-2018:2107-1
- SUSE-SU-2018:2108-1
- SUSE-SU-2018:2109-1
- SUSE-SU-2018:2110-1
- SUSE-SU-2018:2111-1
- SUSE-SU-2018:2112-1
- SUSE-SU-2018:2113-1
- SUSE-SU-2018:2114-1
- SUSE-SU-2018:2115-1
- SUSE-SU-2018:2248-1
- SUSE-SU-2018:2250-1
- SUSE-SU-2018:2254-1
- SUSE-SU-2018:2255-1
- SUSE-SU-2018:2262-1
- SUSE-SU-2018:2263-1
- SUSE-SU-2018:2264-1
- SUSE-SU-2018:2266-1
- SUSE-SU-2018:2267-1
- SUSE-SU-2018:2268-1
- SUSE-SU-2018:2269-1
- SUSE-SU-2018:2270-1
- SUSE-SU-2018:2271-1
- SUSE-SU-2018:2528-1
- USN-3696-1
- USN-3696-2
- USN-3698-1
- USN-3698-2
- XSA-267
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:freebsd/FreeBSD-kernel | FreeBSD-kernel | < 11.1_11 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |