Back to bug 2049531
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Petr Matousek | 2022-02-02 11:47:35 UTC | CC | security-response-team | |
| Petr Matousek | 2022-02-02 11:49:25 UTC | Depends On | 2049549, 2049545, 2049554, 2049547, 2049544, 2049551, 2049550, 2049553, 2049548, 2049552, 2049546 | |
| RaTasha Tillery-Smith | 2022-02-02 13:54:41 UTC | Doc Text | Fast store forwarding prediction in one domain could be controlled by software previously executed in another domain. Such control could help a malicious program running in user mode (or guest VM) to trigger transient execution gadgets in supervisor mode (or VMM), potentially leading to sensitive data disclosure. Fast store forward prediction is not enabled when SSBD is set. An authenticated user with local access may be able to perform information disclosure via transient execution. | A flaw was found in microcode. Fast store forwarding prediction in one domain could be controlled by software previously executed in another domain. Such control helps a malicious program running in user mode (or guest VM) to trigger transient execution gadgets in supervisor mode (or VMM), potentially leading to sensitive data disclosure. Fast store forward prediction is not enabled when SSBD is set. This flaw allows an authenticated user with local access to perform information disclosure via transient execution. |
| Petr Matousek | 2022-02-08 18:50:41 UTC | Deadline | 2022-02-08 | |
| Group | security, qe_staff | |||
| Summary | EMBARGOED CVE-2021-0145 microcode: Fast store forward predictor - Cross Domain Training | CVE-2021-0145 microcode: Fast store forward predictor - Cross Domain Training | ||
| Red Hat Bugzilla | 2023-05-01 08:29:22 UTC | CC | skozina | |
| Red Hat Bugzilla | 2023-07-07 08:33:52 UTC | Assignee | security-response-team | nobody |
| CC | security-response-team |
Back to bug 2049531