vulnerability
SUSE: CVE-2022-23960: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:M/Au:N/C:P/I:N/A:N) | Mar 13, 2022 | Oct 26, 2022 | Feb 13, 2023 |
Severity
2
CVSS
(AV:L/AC:M/Au:N/C:P/I:N/A:N)
Published
Mar 13, 2022
Added
Oct 26, 2022
Modified
Feb 13, 2023
Description
Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the Branch History Buffer (BHB) to influence mispredicted branches. Then, cache allocation can allow the attacker to obtain sensitive information.
Solutions
suse-upgrade-arm-trusted-firmwaresuse-upgrade-arm-trusted-firmware-imx8mmsuse-upgrade-arm-trusted-firmware-imx8mqsuse-upgrade-arm-trusted-firmware-poplarsuse-upgrade-arm-trusted-firmware-qemususe-upgrade-arm-trusted-firmware-qemu_sbsasuse-upgrade-arm-trusted-firmware-rk3328suse-upgrade-arm-trusted-firmware-rk3368suse-upgrade-arm-trusted-firmware-rpi3suse-upgrade-arm-trusted-firmware-rpi4suse-upgrade-arm-trusted-firmware-sun50i_a64suse-upgrade-arm-trusted-firmware-sun50i_h6suse-upgrade-arm-trusted-firmware-tegra186suse-upgrade-arm-trusted-firmware-tegra210suse-upgrade-arm-trusted-firmware-toolssuse-upgrade-arm-trusted-firmware-zynqmpsuse-upgrade-kernel-64kbsuse-upgrade-kernel-64kb-develsuse-upgrade-kernel-64kb-extrasuse-upgrade-kernel-64kb-optionalsuse-upgrade-kernel-azuresuse-upgrade-kernel-azure-basesuse-upgrade-kernel-azure-develsuse-upgrade-kernel-defaultsuse-upgrade-kernel-default-basesuse-upgrade-kernel-default-develsuse-upgrade-kernel-default-extrasuse-upgrade-kernel-default-mansuse-upgrade-kernel-default-optionalsuse-upgrade-kernel-develsuse-upgrade-kernel-devel-azuresuse-upgrade-kernel-docssuse-upgrade-kernel-kvmsmallsuse-upgrade-kernel-macrossuse-upgrade-kernel-obs-buildsuse-upgrade-kernel-sourcesuse-upgrade-kernel-source-azuresuse-upgrade-kernel-symssuse-upgrade-kernel-syms-azuresuse-upgrade-kernel-zfcpdumpsuse-upgrade-reiserfs-kmp-default
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.