CVE-2018-15572Improper Isolation of Shared Resources on System-on-a-Chip (SoC) in Kernel

CWE-1189Improper Isolation of Shared Resources on System-on-a-Chip (SoC)CWE-200Sensitive Information Exposure20 documents7 sources
Severity
6.5MEDIUMNVD
OSV7.8OSV7.0OSV5.6OSV5.5
EPSS
0.0%
top 87.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Linux KernelDebian LinuxCanonical Ubuntu Linux+1 more
Timeline
PublishedAug 20
Latest updateMay 13

Description

The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 2.0 | Impact: 4.0

Affected Packages4 packages

NVDlinux/linux_kernel< 4.18.1
Debianlinux/linux_kernel< 4.17.15-1+3
Ubuntulinux/linux_kernel< 3.13.0-160.210+2
debiandebian/linux< linux 4.17.15-1 (bookworm)

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 12.04, 14.04, 16.04, 18.04

Patches

Patch: git.kernel.orgPatch: cdn.kernel.orgPatch: github.com

🔴Vulnerability Details

8
GHSA
GHSA-fr39-wf38-f5w3: The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs2022-05-13
OSV
linux-azure vulnerabilities2018-10-23
OSV
linux vulnerabilities2018-10-01
OSV
linux-hwe, linux-gcp vulnerabilities2018-10-01
OSV
linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerabilities2018-10-01

📋Vendor Advisories

9
Ubuntu
Linux kernel (Azure) vulnerabilities2018-10-23
Ubuntu
Linux kernel (HWE) vulnerabilities2018-10-01
Ubuntu
Linux kernel (Trusty HWE) vulnerabilities2018-10-01
Ubuntu
Linux kernel vulnerabilities2018-10-01
Ubuntu
Linux kernel (Xenial HWE) vulnerabilities2018-10-01

💬Community

2
Bugzilla
CVE-2018-15572 kernel: hw: cpu: userspace-userspace spectreRSB attack [fedora-all]2018-08-15
Bugzilla
CVE-2018-15572 Kernel: hw: cpu: userspace-userspace spectreRSB attack2018-08-15