CVE-2018-3665

Published: Jun 21, 2018

Modified: Sep 17, 2024

PUBLISHED

Description

System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.

Vendor	Product	Versions
Intel Corporation	Intel Core-based microprocessors	affected `All`

References

[debian-lts-announce] 20180714 [SECURITY] [DLA 1422-1] linux security update

mailing-list

x_refsource_MLIST

RHSA-2018:2164

vendor-advisory

x_refsource_REDHAT

USN-3696-1

vendor-advisory

x_refsource_UBUNTU

1041125

vdb-entry

x_refsource_SECTRACK

[debian-lts-announce] 20180715 [SECURITY] [DLA 1422-2] linux security update

mailing-list

x_refsource_MLIST

RHSA-2018:1944

vendor-advisory

x_refsource_REDHAT

RHSA-2018:1852

vendor-advisory

x_refsource_REDHAT

FreeBSD-SA-18:07

vendor-advisory

x_refsource_FREEBSD

1041124

vdb-entry

x_refsource_SECTRACK

RHSA-2018:2165

vendor-advisory

x_refsource_REDHAT

DSA-4232

vendor-advisory

x_refsource_DEBIAN

USN-3698-1

vendor-advisory

x_refsource_UBUNTU

USN-3696-2

vendor-advisory

x_refsource_UBUNTU

104460

vdb-entry

x_refsource_BID

USN-3698-2

vendor-advisory

x_refsource_UBUNTU

RHSA-2019:1170

vendor-advisory

x_refsource_REDHAT

RHSA-2019:1190

vendor-advisory

x_refsource_REDHAT

https://www.oracle.com/security-alerts/cpujul2020.html

x_refsource_MISC

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

x_refsource_CONFIRM

https://nvidia.custhelp.com/app/answers/detail/a_id/4787

x_refsource_CONFIRM

https://www.synology.com/support/security/Synology_SA_18_31

x_refsource_CONFIRM

https://security.netapp.com/advisory/ntap-20181016-0001/

x_refsource_CONFIRM

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00145.html

x_refsource_CONFIRM

https://support.citrix.com/article/CTX235745

x_refsource_CONFIRM

https://security.paloaltonetworks.com/CVE-2018-3665

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-3665

Description

Affected Products

References