CVE-2023-1637
CVSS V2 None
CVSS V3 None
Description
A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks in the Linux kernel X86 CPU Power management options functionality was found in the way user resuming CPU from suspend-to-RAM. A local user could use this flaw to potentially get unauthorized access to some memory of the CPU similar to the speculative execution behavior kind of attacks.
Overview
- CVE ID
- CVE-2023-1637
- Assigner
- secalert@redhat.com
- Vulnerability Status
- Analyzed
- Published Version
- 2023-03-27T22:15:21
- Last Modified Date
- 2023-04-03T18:06:00
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:o:linux:linux_kernel:5.18:rc2:*:*:*:*:*:* | 1 | OR |
References
| Reference URL | Reference Tags |
|---|---|
| https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e2a1256b17b16f9b9adf1b6fea56819e7b68e463 | Mailing List Patch |
| https://sourceware.org/bugzilla/show_bug.cgi?id=27398 | Issue Tracking |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-1637 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1637 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-17 03:38:28 | Added to TrackCVE | |||
| 2023-04-17 03:38:31 | Weakness Enumeration | new |