vulnerability

Red Hat: CVE-2023-1637: save/restore speculative MSRs during S3 suspend/resume (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:N/A:N)	2023-03-27	2023-08-30	2025-01-28

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

2023-03-27

Added

2023-08-30

Modified

2025-01-28

Description

A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks in the Linux kernel X86 CPU Power management options functionality was found in the way user resuming CPU from suspend-to-RAM. A local user could use this flaw to potentially get unauthorized access to some memory of the CPU similar to the speculative execution behavior kind of attacks.

Solution(s)

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

NVD-CVE-2023-1637
REDHAT-RHSA-2023:4789
REDHAT-RHSA-2023:5069
REDHAT-RHSA-2023:5091
REDHAT-RHSA-2023:5244
REDHAT-RHSA-2023:5255

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today