CVE-2020-10767

CWE-44016 documents10 sources

Severity

5.5MEDIUM

EPSS

0.0%

top 87.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Linux Kernel Kernel

Timeline

PublishedSep 15

Latest updateMay 24

Description

A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶Android:linux_kernel::0 — :2021-01-05

▶NVDlinux/linux_kernel< 5.8.0

▶CVEListV5linux_kernel/kernelbefore 5.8-rc1

▶Debianlinux< 5.7.6-1+3

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

GHSA

GHSA-hmrm-3xmg-v873: A flaw was found in the Linux kernel before 5↗2022-05-24

▶

OSV

CVE-2020-10767: In spectre_v2_user_select_mitigation of bugs↗2021-01-01

▶

OSV

CVE-2020-10767: A flaw was found in the Linux kernel before 5↗2020-09-15

▶

CVEList

CVE-2020-10767: A flaw was found in the Linux kernel before 5↗2020-09-15

▶

📋Vendor Advisories

Android

CVE-2020-10767: Linux kernel↗2021-01-01

▶

Microsoft

▶

Ubuntu

Linux kernel vulnerabilities↗2020-09-03

▶

Ubuntu

Linux kernel vulnerabilities↗2020-09-03

▶

Ubuntu

linux kernel vulnerabilities↗2020-07-31

▶

💬Community

Bugzilla

CVE-2020-10767 kernel: Indirect Branch Prediction Barrier is force-disabled when STIBP is unavailable or enhanced IBRS is available. [fedora-all]↗2020-06-16

▶

Bugzilla

CVE-2020-10767 kernel: Indirect Branch Prediction Barrier is force-disabled when STIBP is unavailable or enhanced IBRS is available.↗2020-06-10

▶