[Git][security-tracker-team/security-tracker][master] Add CVE-2020-0550
Salvatore Bonaccorso
carnil at debian.org
Tue Mar 10 20:59:54 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1e1d3a38 by Salvatore Bonaccorso at 2020-03-10T21:59:15+01:00
Add CVE-2020-0550
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25864,8 +25864,11 @@ CVE-2020-0551 [Load Value Injection]
NOTE: binutils/toolchain updates will include a patch that optionally emits lfence
NOTE: instructions in problematic situations (but have performance impact), cf.
NOTE: https://sourceware.org/pipermail/binutils/2020-March/110175.html
-CVE-2020-0550
+CVE-2020-0550 [Snoop-Assisted L1D Sampling]
RESERVED
+ NOTE: Intel is (currently) no planning to release microcode updates to mitigate issue.
+ NOTE: https://software.intel.com/security-software-guidance/insights/deep-dive-snoop-assisted-l1-data-sampling
+ NOTE: https://software.intel.com/security-software-guidance/insights/processors-affected-snoop-assisted-l1-data-sampling
CVE-2020-0549 (Cleanup errors in some data cache evictions for some Intel(R) Processo ...)
- intel-microcode <unfixed>
[buster] - intel-microcode <postponed> (Minor issue; low impact if all mitigations for TAA and MDS were already previously applied)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e1d3a3865f0ff6fb4663dfed488f3eb48911756
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e1d3a3865f0ff6fb4663dfed488f3eb48911756
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200310/7b7dcd1b/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list