[Git][security-tracker-team/security-tracker][master] add foreshadow vulns

Yves-Alexis Perez corsac at debian.org
Tue Aug 14 19:56:21 BST 2018 

Yves-Alexis Perez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
faac33eb by Yves-Alexis Perez at 2018-08-14T18:56:07Z
add foreshadow vulns

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -31304,7 +31304,12 @@ CVE-2018-3648
 	RESERVED
 CVE-2018-3647
 	RESERVED
-CVE-2018-3646
+CVE-2018-3646 [L1 Terminal Fault-VMM]
+	- linux <unfixed>
+	- xen <unfixed>
+	- intel-microcode <unfixed>
+	NOTE: https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault
+	NOTE: https://foreshadowattack.eu/
 	RESERVED
 CVE-2018-3645 (Escalation of privilege in all versions of the Intel Remote Keyboard ...)
 	NOT-FOR-US: Intel
@@ -31368,8 +31373,13 @@ CVE-2018-3622
 	RESERVED
 CVE-2018-3621
 	RESERVED
-CVE-2018-3620
+CVE-2018-3620 [L1 Terminal Fault-OS/SMM Foreshadow-NG ]
 	RESERVED
+	- linux <unfixed>
+	- xen <unfixed>
+	- intel-microcode <unfixed>
+	NOTE: https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault
+	NOTE: https://foreshadowattack.eu/
 CVE-2018-3619 (Information disclosure vulnerability in storage media in systems with ...)
 	NOT-FOR-US: Intel
 CVE-2018-3618
@@ -31378,8 +31388,11 @@ CVE-2018-3617
 	REJECTED
 CVE-2018-3616
 	RESERVED
-CVE-2018-3615
+CVE-2018-3615 [L1 Terminal Fault-SGX / Foreshadow ]
 	RESERVED
+	- intel-microcode <unfixed>
+	NOTE: https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault
+	NOTE: https://foreshadowattack.eu/
 CVE-2018-3614
 	RESERVED
 CVE-2018-3613



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/faac33ebdc8742d5b4da143f7767a07e420601d5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/faac33ebdc8742d5b4da143f7767a07e420601d5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180814/ff794263/attachment.html>

More information about the debian-security-tracker-commits mailing list