Name | CVE-2018-3646 |
Description | Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
References | DLA-1481-1, DSA-4274-1, DSA-4279-1 |
The table below lists information on source packages.
Source Package | Release | Version | Status |
---|---|---|---|
intel-microcode (PTS) | jessie/non-free | 3.20240910.1~deb8u1 | fixed |
jessie/non-free (lts) | 3.20230214.1~deb8u1 | fixed | |
stretch/non-free | 3.20240910.1~deb9u1 | fixed | |
stretch/non-free (security) | 3.20210608.2~deb9u2 | fixed | |
stretch/non-free (lts) | 3.20230214.1~deb9u1 | fixed | |
buster/non-free | 3.20240910.1~deb10u1 | fixed | |
buster/non-free (security) | 3.20240312.1~deb10u1 | fixed | |
bullseye/non-free | 3.20240813.1~deb11u1 | fixed | |
bullseye/non-free (security) | 3.20240910.1~deb11u1 | fixed | |
bookworm/non-free-firmware | 3.20240910.1~deb12u1 | fixed | |
bookworm/non-free-firmware (security) | 3.20231114.1~deb12u1 | fixed | |
trixie/non-free-firmware, sid/non-free-firmware | 3.20241112.1 | fixed | |
linux (PTS) | jessie, jessie (lts) | 3.16.84-1 | vulnerable |
stretch (security) | 4.9.320-2 | fixed | |
stretch (lts), stretch | 4.9.320-3 | fixed | |
buster (security), buster, buster (lts) | 4.19.316-1 | fixed | |
bullseye | 5.10.223-1 | fixed | |
bullseye (security) | 5.10.226-1 | fixed | |
bookworm | 6.1.115-1 | fixed | |
bookworm (security) | 6.1.119-1 | fixed | |
trixie | 6.12.5-1 | fixed | |
sid | 6.12.6-1 | fixed | |
linux-4.9 (PTS) | jessie, jessie (lts) | 4.9.303-1~deb8u3 | fixed |
xen (PTS) | jessie, jessie (lts) | 4.4.4lts5-0+deb8u1 | vulnerable |
stretch (security), stretch (lts), stretch | 4.8.5.final+shim4.10.4-1+deb9u12 | fixed | |
buster (security), buster, buster (lts) | 4.11.4+107-gef32c7afa2-1 | fixed | |
bullseye | 4.14.6-1 | fixed | |
bullseye (security) | 4.14.5+94-ge49571868d-1 | fixed | |
bookworm | 4.17.3+10-g091466ba55-1~deb12u1 | fixed | |
sid, trixie | 4.17.3+36-g54dacb5c02-1 | fixed |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
intel-microcode | source | (unstable) | 3.20180703.1 | |||
linux | source | stretch | 4.9.110-3+deb9u3 | DSA-4279-1 | ||
linux | source | (unstable) | 4.17.15-1 | |||
linux-4.9 | source | jessie | 4.9.110-3+deb9u4~deb8u1 | DLA-1481-1 | ||
xen | source | stretch | 4.8.4+xsa273+shim4.10.1+xsa273-1+deb9u10 | DSA-4274-1 | ||
xen | source | (unstable) | 4.11.1~pre.20180911.5acdd26fdc+dfsg-2 |
[jessie] - linux <ignored> (Too invasive and risky to apply)
[jessie] - xen <ignored> (Depends on fix for CVE-2017-5715, CVE-2017-5753, CVE-2017-5754)
https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault
https://foreshadowattack.eu/
https://git.kernel.org/linus/958f338e96f874a0d29442396d6adf9c1e17aa2d
https://xenbits.xen.org/xsa/advisory-273.html
Updates were already shipped with 20180703 release, but only disclosed later, see #906158
The 3.20180703.1 release for intel-microcode was the first batch of updates which targeted
most server type CPUs, additional models were supported in the 3.20180807a.1 release