QwikSec

Security Database

CVE

CWE

Training

CVE-2006-1056

Published: Apr 20, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys. NOTE: this is the documented behavior of AMD64 processors, but it is inconsistent with Intel processors in a security-relevant fashion that was not addressed by the kernels.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

oval:org.mitre.oval:def:9995

vdb-entry

signature

x_refsource_OVAL

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187911

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_VUPEN

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187910

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

FEDORA-2006-423

vendor-advisory

x_refsource_FEDORA

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_UBUNTU

http://kb.vmware.com/kb/2533126

x_refsource_CONFIRM

vdb-entry

x_refsource_OSVDB

vdb-entry

x_refsource_OSVDB

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

http://www.vmware.com/download/esx/esx-213-200610-patch.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_REDHAT

SUSE-SA:2006:028

vendor-advisory

x_refsource_SUSE

20061113 VMSA-2006-0009 - VMware ESX Server 3.0.0 AMD fxsave/restore issue

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

20060419 FreeBSD Security Advisory FreeBSD-SA-06:14.fpu

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_BID

http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

http://www.vmware.com/download/esx/esx-254-200610-patch.html

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

SUSE-SU-2014:0446

vendor-advisory

x_refsource_SUSE

[linux-kernel] 20060419 RE: Linux 2.6.16.9

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_VUPEN

20061113 VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4

mailing-list

x_refsource_BUGTRAQ

amd-fpu-information-disclosure(25871)

vdb-entry

x_refsource_XF

http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

20061113 VMSA-2006-0007 - VMware ESX Server 2.1.3 Upgrade Patch 2

mailing-list

x_refsource_BUGTRAQ

http://security.freebsd.org/advisories/FreeBSD-SA-06:14-amd.txt

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

20061113 VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.