CVE-2023-3640 — Observable Discrepancy in Redhat Enterprise Linux

CWE-203 — Observable Discrepancy CWE-200 — Sensitive Information Exposure7 documents7 sources

Severity

7.8HIGHNVD

CNA5.5OSV5.5

EPSS

0.2%

top 64.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Enterprise Linux

Timeline

PublishedJul 24

Description

A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. Based on the previous CVE-2023-0597, the 'Randomize per-cpu entry area' feature was implemented in /arch/x86/mm/cpu_entry_area.c, which works through the init_cea_offsets() function when KASLR is enabled. However, despite this feature, there is still a risk of per-cpu entry area leaks. This is…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages0 packages

Also affects: Enterprise Linux 8.0, 9.0

🔴Vulnerability Details

CVEList

Kernel: x86/mm: a per-cpu entry area leak was identified through the init_cea_offsets function when prefetchnta and prefetcht2 instructions being used for the per-cpu entry area mapping to the user sp↗2023-07-24

▶

GHSA

GHSA-g854-mv2r-2r5h: A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess th↗2023-07-24

▶

OSV

CVE-2023-3640: A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess th↗2023-07-24

▶

📋Vendor Advisories

Red Hat

▶

Debian

CVE-2023-3640: linux - A possible unauthorized memory access flaw was found in the Linux kernel's cpu_e...↗2023

▶

💬Community

Bugzilla

CVE-2023-3640 Kernel: x86/mm: a per-cpu entry area leak was identified through the init_cea_offsets function when prefetchnta and prefetcht2 instructions being used for the per-cpu entry area mapping ↗2023-06-26

▶