Intel CVE-2022-0001 & CVE-2022-0002

Description

CVEID: CVE-2022-0001

Description: Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

CVEID: CVE-2022-0002

Description: Non-transparent sharing of branch predictor within a context in some Intel® Processors may allow an authorized user to potentially enable information disclosure via local access.

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html

The Linux Kernel Team has confirmed patches are avialble @ kernel.org.
Im unsure of the status of FreeBSD kernel patches. I'll leave that to Mav to investigate.

Problem/Justification

None

Impact

None

Activity

Bug Clerk March 11, 2022 at 9:24 PM

None PR: https://github.com/truenas/linux/pull/24

Resize issue view side panel

Complete

Details

Assignee

Alexander Motin

Reporter

JT Pennington(Deactivated)

Labels

Time remaining

Fix versions

SCALE-22.02.0.1

Affects versions

SCALE-22.02.0

Priority

High

Katalon Platform

Created March 11, 2022 at 2:34 PM

Updated July 1, 2022 at 5:58 PM

Resolved March 12, 2022 at 3:16 AM