ALT-PU-2022-1662-1
Package kernel-image-centos updated to version 5.14.0.77-alt1.el9 for branch sisyphus in task 298187.
Closed vulnerabilities
BDU:2022-01511
Уязвимость реализации режима Intra-mode BTI (IMBTI) микропрограммного обеспечения процессоров Intel, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
BDU:2022-01915
Уязвимость реализации режима Intra-mode BTI (IMBTI) микропрограммного обеспечения процессоров Intel, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
BDU:2022-03555
Уязвимость модуля LFENCE/JMP процессоров AMD, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2024-11-21
CVE-2021-26401
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
- [oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues
- [oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues
- https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1036
- https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1036
Modified: 2025-04-01
CVE-2022-0001
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- [oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues
- [oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues
- https://security.netapp.com/advisory/ntap-20220818-0004/
- https://security.netapp.com/advisory/ntap-20220818-0004/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html
- VU#155143
- VU#155143
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://www.vicarius.io/vsociety/posts/cve-2022-0001-detect-specter-vulnerability?prevUrl=wizard
- https://www.vicarius.io/vsociety/posts/cve-2022-0001-mitigate-specter-vulnerability?prevUrl=wizard
Modified: 2024-11-21
CVE-2022-0002
Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- [oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues
- [oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues
- https://security.netapp.com/advisory/ntap-20220818-0004/
- https://security.netapp.com/advisory/ntap-20220818-0004/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html