[Git][security-tracker-team/security-tracker][master] Add CVE-2023-20569 for "Speculative Return Stack Overflow (SRSO)"
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Aug 8 18:06:00 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e51275f4 by Salvatore Bonaccorso at 2023-08-08T19:05:41+02:00
Add CVE-2023-20569 for "Speculative Return Stack Overflow (SRSO)"
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -54087,6 +54087,16 @@ CVE-2023-20570
RESERVED
CVE-2023-20569
RESERVED
+ - amd64-microcode 3.20230719.1
+ [bookworm] - amd64-microcode 3.20230719.1~deb12u1
+ [bullseye] - amd64-microcode 3.20230719.1~deb12u1
+ [buster] - amd64-microcode 3.20230719.1~deb10u1
+ - linux <unfixed>
+ NOTE: SRSO microcode for Milan (Zen3 EPYC):
+ NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/amd-ucode?id=b250b32ab1d044953af2dc5e790819a7703b7ee6
+ NOTE: https://comsec.ethz.ch/research/microarch/inception/
+ NOTE: https://comsec.ethz.ch/wp-content/files/inception_sec23.pdf
+ NOTE: https://github.com/comsec-group/inception
CVE-2023-20568
RESERVED
CVE-2023-20567
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e51275f4b6544dba9ff14e08b82c4e4e0dbc8be6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e51275f4b6544dba9ff14e08b82c4e4e0dbc8be6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230808/bd18e01c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list