CVE-2018-3615 kernel: L1 Terminal Fault: SGX

CVE ID

CVE-2018-3615

DESCRIPTION


Systems with microprocessors utilizing speculative execution and Intel® software guard extensions (Intel® SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.

7.9 High CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N

RESOLUTION

Resolution:
  Fixed with kernel-2.6.32-754.3.5.el6.x86_64.rpm and microcode_ctl-1.17-33.3.el6_10.x86_64.rpm in Unitrends security update (>=08/16/2018)

LINK TO ADVISORIES

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us