var-201905-0710

Vulnerability from variot

Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf. Intel Xeon Scalable Processors are all products of Intel Corporation of the United States. Intel Xeon Scalable Processors are a scalable server central processing unit (CPU). Intel Xeon Processor E7 v4 Family is a Xeon E7 series server central processing unit (CPU). Intel Xeon Processor E5 v4 Family is a Xeon E5 series server central processing unit (CPU). Information disclosure vulnerabilities exist in several Intel products. This vulnerability stems from configuration errors in network systems or products during operation. An unauthorized attacker could exploit the vulnerability to obtain sensitive information of the affected components. The following products and versions are affected: Intel Xeon Scalable Processors; Xeon Processor E7 v4 Family; Xeon Processor E5 v4 Family; Xeon Processor E3 v6 Family; Xeon Processor E3 v4 Family; Xeon Processor E; Xeon E Processor; Xeon D Processor; Puma; Pentium Processor Silver Series; Pentium Processor N Series; Pentium Processor J Series; Pentium Gold Processor Series; Mobile Communications Platforms; Microcode; Core X series Processors; Celeron Processor N Series; Celeron Processor J Series; Celeron Processor G Series; Atom Processor X Series ;Atom Processor E3900 Series;Atom Processor E3800 Series;Atom Processor. The vulnerability is due to improper memory operations that could expose a side channel on the affected system. A successful exploit could be used to conduct further attacks. Proof-of-concept (PoC) code that demonstrates an exploit of this vulnerability is publicly available. Intel has confirmed the vulnerability and released software updates. Description:

The VDSM service is required by a Virtualization Manager to manage the Linux hosts. VDSM manages and monitors the host's storage, memory and networks as well as virtual machine creation, other host administration tasks, statistics gathering, and log collection. Description:

KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. (CVE-2019-11091)

QEMU: device_tree: heap buffer overflow while loading device tree blob (CVE-2018-20815)
QEMU: rtl8139: integer overflow leads to buffer overflow (CVE-2018-17958)
QEMU: net: ignore packets with large size (CVE-2018-17963)
QEMU: scsi-generic: possible OOB access while handling inquiry request (CVE-2019-6501)
QEMU: slirp: information leakage in tcp_emu() due to uninitialized stack variables (CVE-2019-9824)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

This update also fixes several bugs and adds various enhancements. Documentation for these changes is available from the Release Notes document linked to in the References section. Once all virtual machines have shut down, start them again for this update to take effect. Bugs fixed (https://bugzilla.redhat.com/):

1508708 - [data plane] Qemu-kvm core dumped when doing block-stream and block-job-cancel to a data disk with data-plane enabled 1526313 - Improve QEMU lock error info for hot-plugging same qcow2 image file twice in different target to VM 1531888 - Local VM and migrated VM on the same host can run with same RAW file as visual disk source while without shareable configured or lock manager enabled 1551486 - QEMU image locking needn't double open fd number (i.e. drop file-posix.c:s->lock_fd) 1585155 - QEMU core dumped when hotplug memory exceeding host hugepages and with discard-data=yes 1597482 - qemu crashed when disk enable the IOMMU 1598119 - "share-rw=on" does not work for luks format image 1603104 - Qemu Aborted (core dumped) for 'qemu-kvm: Failed to lock byte 100' when remote NFS or GlusterFS volume stopped during the block mirror(or block commit/stream) process 1607768 - qemu aborted when start guest with a big iothreads 1608226 - [virtual-network][mq] prompt warning "qemu-kvm: unable to start vhost net: 14: falling back on userspace virtio" when boot with win8+ guests with multi-queue 1610461 - High Host CPU load for Windows 10 Guests (Update 1803) when idle 1614302 - qemu-kvm: Could not find keytab file: /etc/qemu/krb5.tab: No such file or directory 1614610 - Guest quit with error when hotunplug cpu 1619778 - Ballooning is incompatible with vfio assigned devices, but not prevented 1620373 - Failed to do migration after hotplug and hotunplug the ivshmem device 1623986 - block-commit can't be used with -blockdev 1624009 - allow backing of pflash via -blockdev 1627272 - boot guest with q35+vIOMMU+ device assignment, qemu crash when return assigned network devices from vfio driver to ixgbe in guest 1628098 - [Intel 7.7 BUG][KVM][Crystal Ridge]object_get_canonical_path_component: assertion failed: (obj->parent != NULL) 1629056 - qemu NBD server failure with block status of dirty bitmaps 1629717 - qemu_ram_mmap: Assertion `is_power_of_2(align)' failed 1629720 - [Intel 7.6 BUG][Crystal Ridge] pc_dimm_get_free_addr: assertion failed: (QEMU_ALIGN_UP(address_space_start, align) == address_space_start) 1631052 - x-block-dirty-bitmap-merge into a disabled bitmap dest causes assert 1631227 - Qemu Core dump when quit vm that's in status "paused(io-error)" with data plane enabled 1631615 - Wrong werror default for -device drive= 1631877 - qemu dirty bitmap merge fails to update count 1633150 - Cross migration from RHEL7.5 to RHEL7.6 fails with cpu flag stibp 1633536 - Qemu core dump when do migration after hot plugging a backend image with 'blockdev-add'(without the frontend) 1636712 - CVE-2018-17958 QEMU: rtl8139: integer overflow leads to buffer overflow 1636777 - CVE-2018-17963 QEMU: net: ignore packets with large size 1642551 - qemu-kvm-tools-rhev depends on libxkbcommon, but the RPM-level dependency is missing 1646781 - CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS) 1646784 - CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS) 1648236 - QEMU doesn't expose rendernode option for egl-headless display type 1656913 - qcow2 cache is too small 1666336 - severe performance impact using encrypted Cinder volume (QEMU luks) 1666884 - persistent bitmaps prevent qcow2 image resize 1667320 - -blockdev: auto-read-only is ineffective for drivers on read-only whitelist 1667782 - CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS) 1668160 - CVE-2019-6501 QEMU: scsi-generic: possible OOB access while handling inquiry request 1668956 - incremental backup bitmap API needs a finalized interface 1672010 - [RHEL7]Qemu coredump when remove a persistent bitmap after vm re-start(dataplane enabled) 1673080 - "An unknown error has occurred" when using cdrom to install the system with two blockdev disks.(when choose installation destination) 1673397 - [RHEL.7] qemu-kvm core dumped after hotplug the deleted disk with iothread parameter 1673402 - Qemu core dump when start guest with two disks using same drive 1676728 - RHEL77: Run iotests as part of build process 1677073 - Backport additional QEMU 4.0 Bitmap API changes to RHEL 7.7 1678515 - CVE-2019-9824 QEMU: slirp: information leakage in tcp_emu() due to uninitialized stack variables 1685989 - Add facility to use block jobs with backing images without write permission 1691009 - NBD pull mode incremental backup API needs a finalized interface 1691018 - Fix iotest 226 for local development builds 1691048 - Add qemu-img info support for querying bitmaps offline 1691563 - QEMU NBD Feature parity roundup (QEMU 3.1.0) 1692018 - qemu-img: Protocol error: simple reply when structured reply chunk was expected 1693101 - CVE-2018-20815 QEMU: device_tree: heap buffer overflow while loading device tree blob 1703916 - Qemu core dump when quit vm after forbidden to do backup with a read-only bitmap 1705312 - CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) 1714160 - Guest with 'reservations' for a disk start failed

(CVE-2019-11091)

This update provides additional support for some Sandybridge server and Core-X CPUs which were not covered in the original May microcode release. For a list of specific CPU models now supported please refer to the entries listed under CPUID 206D6 and 206D7 at https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf

For the stable distribution (stretch), these problems have been fixed in version 3.20190618.1~deb9u1.

We recommend that you upgrade your intel-microcode packages.

For the detailed security status of intel-microcode please refer to its security tracker page at: https://security-tracker.debian.org/tracker/intel-microcode

Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl0LKeoACgkQEMKTtsN8 TjZNtxAAi0dfmsv3xJXYXa/UIG7ayCCdywg7bfYUIFh7eaz5K9IUdq1RRea+qPsd BKzBaWDDGl6+YyZJibFD+JYjrxvHOEWtVrJPuoco2Z34nKkEJDieoFtQjjeZ61ik S9iT2zWnTQa+VixIdJuYBS9z1Rakf58SU/IpNKxZ33eaJ+isAe9KQLO0OyD/d9qN x56EQyAmSOx44IrzkHegIchFNaV2fvScoJ1kVg21FMKWi96P4GTU7jw2UWzNepVs 6yrXfTSaPWUbSg93D24i0FXVce9m35OP7SosdkIyDU5fRfHGxTPxDFnXa2PmY71j uBniE6oUe75Fh9tZpNCQoL9e08463pZjjETcTBxMKYF+Q9/3OwIeRfYCd39gLlsP H3GNW8bLzxrntWquRazthkvfkTP+H9QG7E3ibeR/YX7l2aS5p8e6fs2OP57g3NCI ZJPrhrPstYJ6NhESUVi2N/QAiaOj4pBsel8bvIKyanGvWcNkonM5FV4tjfXm0GHx ZfIiBANF5aLh/pAkd5uDzxyH5xKhM/F0FRlDyqHjb2BuyoG3B2GLe2lXgkIhAR20 JmbPk9S/d15GNC9ndr+XFOkU6+IDgC7glSf0PLuRli7db6u6US1Ch+cS4k5mTzWS 7/Run+QoeSzZjIBvF6aamMZfWxISOHyvV+5b/cWGbfX4wqyppHQ= =VGab -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

===================================================================== Red Hat Security Advisory

Synopsis: Important: libvirt security update Advisory ID: RHSA-2019:1177-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:1177 Issue date: 2019-05-14 CVE Names: CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 =====================================================================

Summary:

An update for libvirt is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - ppc64le, s390x Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7) - aarch64, ppc64le, s390x

Description:

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

Security Fix(es):

A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer while the data is fetched from higher level caches. This response time can be measured to infer data in the fill buffer. (CVE-2018-12130)
Modern Intel microprocessors implement hardware-level micro-optimizations to improve the performance of writing data back to CPU caches. The write operation is split into STA (STore Address) and STD (STore Data) sub-operations. These sub-operations allow the processor to hand-off address generation logic into these sub-operations for optimized writes. Both of these sub-operations write to a shared distributed processor structure called the 'processor store buffer'. As a result, an unprivileged attacker could use this flaw to read private data resident within the CPU's processor store buffer. (CVE-2018-12126)
Microprocessors use a ‘load port’ subcomponent to perform load operations from memory or IO. During a load operation, the load port receives data from the memory or IO subsystem and then provides the data to the CPU registers and operations in the CPU’s pipelines. Stale load operations results are stored in the 'load port' table until overwritten by newer operations. Certain load-port operations triggered by an attacker can be used to reveal data about previous stale requests leaking data back to the attacker via a timing side-channel. (CVE-2019-11091)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution:

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, libvirtd will be restarted automatically.

Bugs fixed (https://bugzilla.redhat.com/):

1646781 - CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS) 1646784 - CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS) 1667782 - CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS) 1705312 - CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

Package List:

Red Hat Enterprise Linux Client (v. 7):

Source: libvirt-4.5.0-10.el7_6.9.src.rpm

x86_64: libvirt-4.5.0-10.el7_6.9.x86_64.rpm libvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm libvirt-client-4.5.0-10.el7_6.9.i686.rpm libvirt-client-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-libs-4.5.0-10.el7_6.9.i686.rpm libvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

x86_64: libvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-devel-4.5.0-10.el7_6.9.i686.rpm libvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm libvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm libvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm libvirt-nss-4.5.0-10.el7_6.9.i686.rpm libvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source: libvirt-4.5.0-10.el7_6.9.src.rpm

x86_64: libvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm libvirt-client-4.5.0-10.el7_6.9.i686.rpm libvirt-client-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-libs-4.5.0-10.el7_6.9.i686.rpm libvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

x86_64: libvirt-4.5.0-10.el7_6.9.x86_64.rpm libvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-devel-4.5.0-10.el7_6.9.i686.rpm libvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm libvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm libvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm libvirt-nss-4.5.0-10.el7_6.9.i686.rpm libvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source: libvirt-4.5.0-10.el7_6.9.src.rpm

ppc64: libvirt-4.5.0-10.el7_6.9.ppc64.rpm libvirt-bash-completion-4.5.0-10.el7_6.9.ppc64.rpm libvirt-client-4.5.0-10.el7_6.9.ppc.rpm libvirt-client-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.ppc64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.ppc.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.ppc64.rpm libvirt-devel-4.5.0-10.el7_6.9.ppc.rpm libvirt-devel-4.5.0-10.el7_6.9.ppc64.rpm libvirt-docs-4.5.0-10.el7_6.9.ppc64.rpm libvirt-libs-4.5.0-10.el7_6.9.ppc.rpm libvirt-libs-4.5.0-10.el7_6.9.ppc64.rpm

ppc64le: libvirt-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-bash-completion-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-client-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-kvm-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-devel-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-docs-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-libs-4.5.0-10.el7_6.9.ppc64le.rpm

s390x: libvirt-4.5.0-10.el7_6.9.s390x.rpm libvirt-bash-completion-4.5.0-10.el7_6.9.s390x.rpm libvirt-client-4.5.0-10.el7_6.9.s390.rpm libvirt-client-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-kvm-4.5.0-10.el7_6.9.s390x.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.s390.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.s390x.rpm libvirt-devel-4.5.0-10.el7_6.9.s390.rpm libvirt-devel-4.5.0-10.el7_6.9.s390x.rpm libvirt-docs-4.5.0-10.el7_6.9.s390x.rpm libvirt-libs-4.5.0-10.el7_6.9.s390.rpm libvirt-libs-4.5.0-10.el7_6.9.s390x.rpm

x86_64: libvirt-4.5.0-10.el7_6.9.x86_64.rpm libvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm libvirt-client-4.5.0-10.el7_6.9.i686.rpm libvirt-client-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-devel-4.5.0-10.el7_6.9.i686.rpm libvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm libvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm libvirt-libs-4.5.0-10.el7_6.9.i686.rpm libvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm

Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7):

Source: libvirt-4.5.0-10.el7_6.9.src.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

ppc64: libvirt-admin-4.5.0-10.el7_6.9.ppc64.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.ppc64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.ppc.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.ppc64.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.ppc64.rpm libvirt-login-shell-4.5.0-10.el7_6.9.ppc64.rpm libvirt-nss-4.5.0-10.el7_6.9.ppc.rpm libvirt-nss-4.5.0-10.el7_6.9.ppc64.rpm

ppc64le: libvirt-admin-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-login-shell-4.5.0-10.el7_6.9.ppc64le.rpm libvirt-nss-4.5.0-10.el7_6.9.ppc64le.rpm

s390x: libvirt-admin-4.5.0-10.el7_6.9.s390x.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.s390x.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.s390.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.s390x.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.s390x.rpm libvirt-login-shell-4.5.0-10.el7_6.9.s390x.rpm libvirt-nss-4.5.0-10.el7_6.9.s390.rpm libvirt-nss-4.5.0-10.el7_6.9.s390x.rpm

x86_64: libvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm libvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm libvirt-nss-4.5.0-10.el7_6.9.i686.rpm libvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm

Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7):

Source: libvirt-4.5.0-10.el7_6.9.src.rpm

aarch64: libvirt-4.5.0-10.el7_6.9.aarch64.rpm libvirt-admin-4.5.0-10.el7_6.9.aarch64.rpm libvirt-bash-completion-4.5.0-10.el7_6.9.aarch64.rpm libvirt-client-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-kvm-4.5.0-10.el7_6.9.aarch64.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.aarch64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.aarch64.rpm libvirt-devel-4.5.0-10.el7_6.9.aarch64.rpm libvirt-docs-4.5.0-10.el7_6.9.aarch64.rpm libvirt-libs-4.5.0-10.el7_6.9.aarch64.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.aarch64.rpm libvirt-login-shell-4.5.0-10.el7_6.9.aarch64.rpm libvirt-nss-4.5.0-10.el7_6.9.aarch64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source: libvirt-4.5.0-10.el7_6.9.src.rpm

x86_64: libvirt-4.5.0-10.el7_6.9.x86_64.rpm libvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm libvirt-client-4.5.0-10.el7_6.9.i686.rpm libvirt-client-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-devel-4.5.0-10.el7_6.9.i686.rpm libvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm libvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm libvirt-libs-4.5.0-10.el7_6.9.i686.rpm libvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

x86_64: libvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm libvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm libvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm libvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm libvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm libvirt-nss-4.5.0-10.el7_6.9.i686.rpm libvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

References:

https://access.redhat.com/security/cve/CVE-2018-12126 https://access.redhat.com/security/cve/CVE-2018-12127 https://access.redhat.com/security/cve/CVE-2018-12130 https://access.redhat.com/security/cve/CVE-2019-11091 https://access.redhat.com/security/vulnerabilities/mds https://access.redhat.com/security/updates/classification/#important

Contact:

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

iQIVAwUBXNsSgNzjgjWX9erEAQjiwQ/+KzJjuKPZd/X2FGkvTlkICF0eyoKrGaOH qNNGLoz/LWJ5POt/WDWzw6V+Xr23DwWRFy6nmHvsVldAF2QsiEZ1MJMreSqlIN5P 8aE45ZL2jG4LItnERjEhGA0YMxVwM8oELDNt4FhPRZeboidQfAxHhlDsOKButo90 c0bJMuPMzcjt/VsuWMFgXLL4h3sQxbffvYUnXRWu8lHpXouhZnf0AGbrR5rv1z5D EWqJ40YG5kUTK8ks8sSJXeEWfmIZC5J4wbQSPc9Vlw6zWRjnyQx71hDXfF/7peIm x315ZkWF23ZF5sppdXKoorju8AWqtMuU/TPLrcYABcifDbSU2Hv9zymyxbPEEuU3 wdU21vuDMB6Y2FtI+cSo47lRvAv/HZ1p6U3DafrAVm857JjBTestYknnjxPYsmqe F5/ELJJu/CysuKReAaTEfPryHBMhXbO8PTnE/dTR5NgS2zD0ZvbszF7Fp5acDaZT VXeOvZ8emEEVs+Q9IyW9puoCygteM6tp3t1cJM6ZfKBHhdjmxmt3SzXup1B2Nz+k Rddh4BBBWQX1w6UzJJc1GsHtpnD3/2XYPS9wFd6eqelevDUvkBRWRUpMQ2+4CL+i juqKGFx6nq62P30xBWr/q5o74iepigrLo/FSHwvx/TY3zj1+gAplKMfe232hHlBB Etxatf7BGkQ= =KkUM -----END PGP SIGNATURE-----

-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . 6.5) - x86_64

7.4) - ppc64, ppc64le, x86_64
Description:

The kernel packages contain the Linux kernel, the core of any Linux operating system. (CVE-2019-11091)

kernel: Buffer overflow in firewire driver via crafted incoming packets (CVE-2016-8633)
kernel: crypto: privilege escalation in skcipher_recvmsg function (CVE-2017-13215)
Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation (CVE-2017-16939)
kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c (CVE-2018-1068)
kernel: Use-after-free due to race condition in AF_PACKET implementation (CVE-2018-18559)
kernel: media: use-after-free in [tuner-xc2028] media driver (CVE-2016-7913)
kernel: Out-of-bounds access via an XFRM_MSG_MIGRATE xfrm Netlink message (CVE-2017-11600)
kernel: memory leak when merging buffers in SCSI IO vectors (CVE-2017-12190)
kernel: Unallocated memory access by malicious USB device via bNumInterfaces overflow (CVE-2017-17558)
Kernel: KVM: DoS via write flood to I/O port 0x80 (CVE-2017-1000407)
Kernel: FPU state information leakage via lazy FPU restore (CVE-2018-3665)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

rwsem in inconsistent state leading system to hung (BZ#1690321)
efi_bgrt_init fails to ioremap error during boot (BZ#1692284)
Affects: All supported versions of FreeBSD. Corrected: 2019-05-14 17:04:00 UTC (stable/12, 12.0-STABLE) 2019-05-14 23:19:08 UTC (releng/12.0, 12.0-RELEASE-p4) 2019-05-14 17:05:02 UTC (stable/11, 11.3-PRERELEASE) 2019-05-14 23:20:16 UTC (releng/11.2, 11.2-RELEASE-p10) CVE Name: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit . Background

Modern processors make use of speculative execution, an optimization technique which performs some action in advance of knowing whether the result will actually be used.

II.

III. Impact

An attacker may be able to read secret data from the kernel or from a process when executing untrusted code (for example, in a web browser).

IV. Workaround

No workaround is available.

Systems with users or processors in different trust domains should disable Hyper-Threading by setting the machdep.hyperthreading_allowed tunable to 0:

echo 'machdep.hyperthreading_allowed=0 >> /boot/loader.conf'

shutdown

V. Solution

Perform one of the following:

Update CPU microcode, upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date, evaluate mitigation and Hyper Threading controls, and reboot the system.

New CPU microcode may be available in a BIOS update from your system vendor, or by installing the devcpu-data package or sysutils/devcpu-data port. Ensure that the BIOS update or devcpu-data package is dated after 2014-05-14.

If using the package or port the microcode update can be applied at boot time by adding the following lines to the system's /boot/loader.conf:

cpu_microcode_load="YES" cpu_microcode_name="/boot/firmware/intel-ucode.bin"

Microcode updates can also be applied while the system is running. See cpucontrol(8) for details.

1) To update your vulnerable system via a binary patch:

Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility:

freebsd-update fetch

freebsd-update install

Follow additional details under "Mitigation Configuration" below.

2) To update your vulnerable system via a source code patch:

The following patches have been verified to apply to the applicable FreeBSD release branches.

a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility.

[FreeBSD 12.0-STABLE]

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12-stable.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12-stable.patch.asc

gpg --verify mds.12-stable.patch.asc

[FreeBSD 12.0-RELEASE]

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12.0.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12.0.patch.asc

gpg --verify mds.12.0.patch.asc

[FreeBSD 11.3-PRERELEASE]

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11-stable.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11-stable.patch.asc

gpg --verify mds.11-stable.patch.asc

[FreeBSD 11.2-RELEASE]

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11.2.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11.2.patch.asc

gpg --verify mds.11.2.patch.asc

b) Apply the patch. Execute the following commands as root:

cd /usr/src

patch < /path/to/patch

c) Recompile your kernel as described in .

Mitigation Configuration

Systems with users, processes, or virtual machines in different trust domains should disable Hyper-Threading by setting the machdep.hyperthreading_allowed tunable to 0:

echo machdep.hyperthreading_allowed=0 >> /boot/loader.conf

To activate the MDS mitigation set the hw.mds_disable sysctl. The settings are:

0 - mitigation disabled 1 - VERW instruction (microcode) mitigation enabled 2 - Software sequence mitigation enabled (not recommended) 3 - Automatic VERW or Software selection

Automatic mode uses the VERW instruction if supported by the CPU / microcode, or software sequences if not. To enable automatic mode at boot:

echo hw.mds_disable=3 >> /etc/sysctl.conf

Reboot the system:

shutdown -r +10min "Security update"

Check the mitigation status:

sysctl hw.mds_disable_state

hw.mds_disable_state: software Silvermont

VI. Correction details

The following list contains the correction revision numbers for each affected branch.

Branch/path Revision

stable/12/ r347567 releng/12.0/ r346594 stable/11/ r347568 releng/11.2/ r347595

To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed:

svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base

Or visit the following URL, replacing NNNNNN with the revision number:

VII

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201905-0710",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "fedora",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fedoraproject",
        "version": "29"
      },
      {
        "model": "microarchitectural load port data sampling",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "intel",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Red Hat",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "152916"
      },
      {
        "db": "PACKETSTORM",
        "id": "154188"
      },
      {
        "db": "PACKETSTORM",
        "id": "152900"
      },
      {
        "db": "PACKETSTORM",
        "id": "152885"
      },
      {
        "db": "PACKETSTORM",
        "id": "152905"
      },
      {
        "db": "PACKETSTORM",
        "id": "152890"
      },
      {
        "db": "PACKETSTORM",
        "id": "152895"
      },
      {
        "db": "PACKETSTORM",
        "id": "152883"
      }
    ],
    "trust": 0.8
  },
  "cve": "CVE-2018-12127",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 4.7,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.4,
            "id": "CVE-2018-12127",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 1.1,
            "vectorString": "AV:L/AC:M/Au:N/C:C/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 4.7,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.4,
            "id": "VHN-122055",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:L/AC:M/AU:N/C:C/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.1,
            "id": "CVE-2018-12127",
            "impactScore": 4.0,
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2018-12127",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201905-622",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-122055",
            "trust": 0.1,
            "value": "MEDIUM"
          },
          {
            "author": "VULMON",
            "id": "CVE-2018-12127",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf. Intel Xeon Scalable Processors are all products of Intel Corporation of the United States. Intel Xeon Scalable Processors are a scalable server central processing unit (CPU). Intel Xeon Processor E7 v4 Family is a Xeon E7 series server central processing unit (CPU). Intel Xeon Processor E5 v4 Family is a Xeon E5 series server central processing unit (CPU). Information disclosure vulnerabilities exist in several Intel products. This vulnerability stems from configuration errors in network systems or products during operation. An unauthorized attacker could exploit the vulnerability to obtain sensitive information of the affected components. The following products and versions are affected: Intel Xeon Scalable Processors; Xeon Processor E7 v4 Family; Xeon Processor E5 v4 Family; Xeon Processor E3 v6 Family; Xeon Processor E3 v4 Family; Xeon Processor E; Xeon E Processor; Xeon D Processor; Puma; Pentium Processor Silver Series; Pentium Processor N Series; Pentium Processor J Series; Pentium Gold Processor Series; Mobile Communications Platforms; Microcode; Core X series Processors; Celeron Processor N Series; Celeron Processor J Series; Celeron Processor G Series; Atom Processor X Series ;Atom Processor E3900 Series;Atom Processor E3800 Series;Atom Processor. \nThe vulnerability is due to improper memory operations that could expose a side channel on the affected system. A successful exploit could be used to conduct further attacks. \nProof-of-concept (PoC) code that demonstrates an exploit of this vulnerability is publicly available. \nIntel has confirmed the vulnerability and released software updates. Description:\n\nThe VDSM service is required by a Virtualization Manager to manage the\nLinux hosts. VDSM manages and monitors the host\u0027s storage, memory and\nnetworks as well as virtual machine creation, other host administration\ntasks, statistics gathering, and log collection. Description:\n\nKVM (Kernel-based Virtual Machine) is a full virtualization solution for\nLinux on a variety of architectures. The qemu-kvm-rhev packages provide the\nuser-space component for running virtual machines that use KVM in\nenvironments managed by Red Hat products. (CVE-2019-11091)\n\n* QEMU: device_tree: heap buffer overflow while loading device tree blob\n(CVE-2018-20815)\n\n* QEMU: rtl8139: integer overflow leads to buffer overflow (CVE-2018-17958)\n\n* QEMU: net: ignore packets with large size (CVE-2018-17963)\n\n* QEMU: scsi-generic: possible OOB access while handling inquiry request\n(CVE-2019-6501)\n\n* QEMU: slirp: information leakage in tcp_emu() due to uninitialized stack\nvariables (CVE-2019-9824)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nAdditional Changes:\n\nThis update also fixes several bugs and adds various enhancements. \nDocumentation for these changes is available from the Release Notes\ndocument linked to in the References section. Once\nall virtual machines have shut down, start them again for this update to\ntake effect. Bugs fixed (https://bugzilla.redhat.com/):\n\n1508708 - [data plane] Qemu-kvm core dumped when doing block-stream and block-job-cancel to a data disk with data-plane enabled\n1526313 - Improve QEMU lock error info for hot-plugging same qcow2 image file twice in different target to VM\n1531888 - Local VM and migrated VM on the same host can run with same RAW file as visual disk source while without shareable configured or lock manager enabled\n1551486 - QEMU image locking needn\u0027t double open fd number (i.e. drop file-posix.c:s-\u003elock_fd)\n1585155 - QEMU core dumped when hotplug memory exceeding host hugepages and with discard-data=yes\n1597482 - qemu crashed when disk enable the IOMMU\n1598119 - \"share-rw=on\" does not work for luks format image\n1603104 - Qemu Aborted (core dumped) for \u0027qemu-kvm: Failed to lock byte 100\u0027 when remote NFS or GlusterFS volume stopped during the block mirror(or block commit/stream) process\n1607768 - qemu aborted when start guest with a big iothreads\n1608226 - [virtual-network][mq] prompt warning \"qemu-kvm: unable to start vhost net: 14: falling back on userspace virtio\" when boot with win8+ guests with multi-queue\n1610461 - High Host CPU load for Windows 10 Guests (Update 1803)  when idle\n1614302 - qemu-kvm: Could not find keytab file: /etc/qemu/krb5.tab: No such file or directory\n1614610 - Guest quit with error when hotunplug cpu\n1619778 - Ballooning is incompatible with vfio assigned devices, but not prevented\n1620373 - Failed to do migration after hotplug and hotunplug the ivshmem device\n1623986 - block-commit can\u0027t be used with -blockdev\n1624009 - allow backing of pflash via -blockdev\n1627272 - boot guest with q35+vIOMMU+ device assignment, qemu crash when return assigned network devices from vfio driver to ixgbe in guest\n1628098 - [Intel 7.7 BUG][KVM][Crystal Ridge]object_get_canonical_path_component: assertion failed: (obj-\u003eparent != NULL)\n1629056 - qemu NBD server failure with block status of dirty bitmaps\n1629717 - qemu_ram_mmap: Assertion `is_power_of_2(align)\u0027 failed\n1629720 - [Intel 7.6 BUG][Crystal Ridge] pc_dimm_get_free_addr: assertion failed: (QEMU_ALIGN_UP(address_space_start, align) == address_space_start)\n1631052 - x-block-dirty-bitmap-merge into a disabled bitmap dest causes assert\n1631227 - Qemu Core dump when quit vm that\u0027s in status \"paused(io-error)\" with data plane enabled\n1631615 - Wrong werror default for -device drive=\u003cnode-name\u003e\n1631877 - qemu dirty bitmap merge fails to update count\n1633150 - Cross migration from RHEL7.5 to RHEL7.6 fails with cpu flag stibp\n1633536 - Qemu core dump when do migration after hot plugging a backend image with \u0027blockdev-add\u0027(without the frontend)\n1636712 - CVE-2018-17958 QEMU: rtl8139: integer overflow leads to buffer overflow\n1636777 - CVE-2018-17963 QEMU: net: ignore packets with large size\n1642551 - qemu-kvm-tools-rhev depends on libxkbcommon, but the RPM-level dependency is missing\n1646781 - CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS)\n1646784 - CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)\n1648236 - QEMU doesn\u0027t expose rendernode option for egl-headless display type\n1656913 - qcow2 cache is too small\n1666336 - severe performance impact using encrypted Cinder volume (QEMU luks)\n1666884 - persistent bitmaps prevent qcow2 image resize\n1667320 - -blockdev: auto-read-only is ineffective for drivers on read-only whitelist\n1667782 - CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS)\n1668160 - CVE-2019-6501 QEMU: scsi-generic: possible OOB access while handling inquiry request\n1668956 - incremental backup bitmap API needs a finalized interface\n1672010 - [RHEL7]Qemu coredump when remove a persistent bitmap after vm re-start(dataplane enabled)\n1673080 - \"An unknown error has occurred\" when using cdrom to install the system with two blockdev disks.(when choose installation destination)\n1673397 - [RHEL.7] qemu-kvm core dumped after hotplug the deleted disk with iothread parameter\n1673402 - Qemu core dump when start guest with two disks using same drive\n1676728 - RHEL77:  Run iotests as part of build process\n1677073 - Backport additional QEMU 4.0 Bitmap API changes to RHEL 7.7\n1678515 - CVE-2019-9824 QEMU: slirp: information leakage in tcp_emu() due to uninitialized stack variables\n1685989 - Add facility to use block jobs with backing images without write permission\n1691009 - NBD pull mode incremental backup API needs a finalized interface\n1691018 - Fix iotest 226 for local development builds\n1691048 - Add qemu-img info support for querying bitmaps offline\n1691563 - QEMU NBD Feature parity roundup (QEMU 3.1.0)\n1692018 - qemu-img: Protocol error: simple reply when structured reply chunk was expected\n1693101 - CVE-2018-20815 QEMU: device_tree: heap buffer overflow while loading device tree blob\n1703916 - Qemu core dump when quit vm after forbidden to do backup with a read-only bitmap\n1705312 - CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM)\n1714160 - Guest with \u0027reservations\u0027 for a disk start failed\n\n6. (CVE-2019-11091)\n\n4. \n\nThis update provides additional support for some Sandybridge server\nand Core-X CPUs which were not covered in the original May microcode\nrelease. For a list of specific CPU models now supported please refer\nto the entries listed under CPUID 206D6 and 206D7 at\nhttps://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf\n\nFor the stable distribution (stretch), these problems have been fixed in\nversion 3.20190618.1~deb9u1. \n\nWe recommend that you upgrade your intel-microcode packages. \n\nFor the detailed security status of intel-microcode please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/intel-microcode\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\n7/Run+QoeSzZjIBvF6aamMZfWxISOHyvV+5b/cWGbfX4wqyppHQ=\n=VGab\n-----END PGP SIGNATURE-----\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: libvirt security update\nAdvisory ID:       RHSA-2019:1177-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2019:1177\nIssue date:        2019-05-14\nCVE Names:         CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 \n                   CVE-2019-11091 \n=====================================================================\n\n1. Summary:\n\nAn update for libvirt is now available for Red Hat Enterprise Linux 7. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64\nRed Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\nRed Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - ppc64le, s390x\nRed Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7) - aarch64, ppc64le, s390x\n\n3. Description:\n\nThe libvirt library contains a C API for managing and interacting with the\nvirtualization capabilities of Linux and other operating systems. In\naddition, libvirt provides tools for remote management of virtualized\nsystems. \n\nSecurity Fix(es):\n\n* A flaw was found in the implementation of the \"fill buffer\", a mechanism\nused by modern CPUs when a cache-miss is made on L1 CPU cache.  If an\nattacker can generate a load operation that would create a page fault, the\nexecution will continue speculatively with incorrect data from the fill\nbuffer while the data is fetched from higher level caches.  This response\ntime can be measured to infer data in the fill buffer. (CVE-2018-12130)\n\n* Modern Intel microprocessors implement hardware-level micro-optimizations\nto improve the performance of writing data back to CPU caches. The write\noperation is split into STA (STore Address) and STD (STore Data)\nsub-operations. These sub-operations allow the processor to hand-off\naddress generation logic into these sub-operations for optimized writes. \nBoth of these sub-operations write to a shared distributed processor\nstructure called the \u0027processor store buffer\u0027.  As a result, an\nunprivileged attacker could use this flaw to read private data resident\nwithin the CPU\u0027s processor store buffer. (CVE-2018-12126)\n\n* Microprocessors use a \u2018load port\u2019 subcomponent to perform load operations\nfrom memory or IO. During a load operation, the load port receives data\nfrom the memory or IO subsystem and then provides the data to the CPU\nregisters and operations in the CPU\u2019s pipelines. Stale load operations\nresults are stored in the \u0027load port\u0027 table until overwritten by newer\noperations. Certain load-port operations triggered by an attacker can be\nused to reveal data about previous stale requests leaking data back to the\nattacker via a timing side-channel. (CVE-2019-11091)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, libvirtd will be restarted\nautomatically. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1646781 - CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS)\n1646784 - CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)\n1667782 - CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS)\n1705312 - CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM)\n\n6. Package List:\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nlibvirt-4.5.0-10.el7_6.9.src.rpm\n\nx86_64:\nlibvirt-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-client-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-client-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nx86_64:\nlibvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nlibvirt-4.5.0-10.el7_6.9.src.rpm\n\nx86_64:\nlibvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-client-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-client-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nx86_64:\nlibvirt-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nlibvirt-4.5.0-10.el7_6.9.src.rpm\n\nppc64:\nlibvirt-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-client-4.5.0-10.el7_6.9.ppc.rpm\nlibvirt-client-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.ppc.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.ppc.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.ppc64.rpm\n\nppc64le:\nlibvirt-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-client-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.ppc64le.rpm\n\ns390x:\nlibvirt-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-client-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-client-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.s390x.rpm\n\nx86_64:\nlibvirt-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-client-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-client-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm\n\nRed Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7):\n\nSource:\nlibvirt-4.5.0-10.el7_6.9.src.rpm\n\nppc64le:\nlibvirt-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-client-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.ppc64le.rpm\n\ns390x:\nlibvirt-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-client-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-client-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.s390x.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nlibvirt-admin-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.ppc64.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.ppc.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.ppc64.rpm\n\nppc64le:\nlibvirt-admin-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.ppc64le.rpm\n\ns390x:\nlibvirt-admin-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.s390x.rpm\n\nx86_64:\nlibvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm\n\nRed Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7):\n\nSource:\nlibvirt-4.5.0-10.el7_6.9.src.rpm\n\naarch64:\nlibvirt-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-admin-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-client-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.aarch64.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.aarch64.rpm\n\nppc64le:\nlibvirt-admin-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.ppc64le.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.ppc64le.rpm\n\ns390x:\nlibvirt-admin-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.s390x.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.s390.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.s390x.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nlibvirt-4.5.0-10.el7_6.9.src.rpm\n\nx86_64:\nlibvirt-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-bash-completion-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-client-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-client-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-config-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-interface-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-network-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nodedev-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-nwfilter-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-qemu-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-secret-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-core-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-gluster-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-logical-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-rbd-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-driver-storage-scsi-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-kvm-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-devel-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-docs-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-libs-4.5.0-10.el7_6.9.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nlibvirt-admin-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-daemon-lxc-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-debuginfo-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-lock-sanlock-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-login-shell-4.5.0-10.el7_6.9.x86_64.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.i686.rpm\nlibvirt-nss-4.5.0-10.el7_6.9.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2018-12126\nhttps://access.redhat.com/security/cve/CVE-2018-12127\nhttps://access.redhat.com/security/cve/CVE-2018-12130\nhttps://access.redhat.com/security/cve/CVE-2019-11091\nhttps://access.redhat.com/security/vulnerabilities/mds\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2019 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nEtxatf7BGkQ=\n=KkUM\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. 6.5) - x86_64\n\n3. 7.4) - ppc64, ppc64le, x86_64\n\n3. Description:\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system. (CVE-2019-11091)\n\n* kernel: Buffer overflow in firewire driver via crafted incoming packets\n(CVE-2016-8633)\n\n* kernel: crypto: privilege escalation in skcipher_recvmsg function\n(CVE-2017-13215)\n\n* Kernel: ipsec: xfrm: use-after-free leading to potential privilege\nescalation (CVE-2017-16939)\n\n* kernel: Out-of-bounds write via userland offsets in ebt_entry struct in\nnetfilter/ebtables.c (CVE-2018-1068)\n\n* kernel: Use-after-free due to race condition in AF_PACKET implementation\n(CVE-2018-18559)\n\n* kernel: media: use-after-free in [tuner-xc2028] media driver\n(CVE-2016-7913)\n\n* kernel: Out-of-bounds access via an XFRM_MSG_MIGRATE xfrm Netlink message\n(CVE-2017-11600)\n\n* kernel: memory leak when merging buffers in SCSI IO vectors\n(CVE-2017-12190)\n\n* kernel: Unallocated memory access by malicious USB device via\nbNumInterfaces overflow (CVE-2017-17558)\n\n* Kernel: KVM: DoS via write flood to I/O port 0x80 (CVE-2017-1000407)\n\n* Kernel: FPU state information leakage via lazy FPU restore\n(CVE-2018-3665)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nBug Fix(es):\n\n* rwsem in inconsistent state leading system to hung (BZ#1690321)\n\n* efi_bgrt_init fails to ioremap error during boot (BZ#1692284)\n\n4. \nAffects:        All supported versions of FreeBSD. \nCorrected:      2019-05-14 17:04:00 UTC (stable/12, 12.0-STABLE)\n                2019-05-14 23:19:08 UTC (releng/12.0, 12.0-RELEASE-p4)\n                2019-05-14 17:05:02 UTC (stable/11, 11.3-PRERELEASE)\n                2019-05-14 23:20:16 UTC (releng/11.2, 11.2-RELEASE-p10)\nCVE Name:       CVE-2018-12126, CVE-2018-12127, CVE-2018-12130,\n\t\tCVE-2019-11091\n\nFor general information regarding FreeBSD Security Advisories,\nincluding descriptions of the fields above, security branches, and the\nfollowing sections, please visit \u003cURL:https://security.FreeBSD.org/\u003e.   Background\n\nModern processors make use of speculative execution, an optimization\ntechnique which performs some action in advance of knowing whether the\nresult will actually be used. \n\nII. \n\nIII. Impact\n\nAn attacker may be able to read secret data from the kernel or from a\nprocess when executing untrusted code (for example, in a web browser). \n\nIV.  Workaround\n\nNo workaround is available. \n\nSystems with users or processors in different trust domains should disable\nHyper-Threading by setting the machdep.hyperthreading_allowed tunable to 0:\n\n# echo \u0027machdep.hyperthreading_allowed=0 \u003e\u003e /boot/loader.conf\u0027\n# shutdown\n\nV.   Solution\n\nPerform one of the following:\n\nUpdate CPU microcode, upgrade your vulnerable system to a supported FreeBSD\nstable or release / security branch (releng) dated after the correction date,\nevaluate mitigation and Hyper Threading controls, and reboot the system. \n\nNew CPU microcode may be available in a BIOS update from your system vendor,\nor by installing the devcpu-data package or sysutils/devcpu-data port. \nEnsure that the BIOS update or devcpu-data package is dated after 2014-05-14. \n\nIf using the package or port the microcode update can be applied at boot time\nby adding the following lines to the system\u0027s /boot/loader.conf:\n\ncpu_microcode_load=\"YES\"\ncpu_microcode_name=\"/boot/firmware/intel-ucode.bin\"\n\nMicrocode updates can also be applied while the system is running.  See\ncpucontrol(8) for details. \n\n1) To update your vulnerable system via a binary patch:\n\nSystems running a RELEASE version of FreeBSD on the i386 or amd64\nplatforms can be updated via the freebsd-update(8) utility:\n\n# freebsd-update fetch\n# freebsd-update install\n\nFollow additional details under \"Mitigation Configuration\" below. \n\n2) To update your vulnerable system via a source code patch:\n\nThe following patches have been verified to apply to the applicable\nFreeBSD release branches. \n\na) Download the relevant patch from the location below, and verify the\ndetached PGP signature using your PGP utility. \n\n[FreeBSD 12.0-STABLE]\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12-stable.patch\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12-stable.patch.asc\n# gpg --verify mds.12-stable.patch.asc\n\n[FreeBSD 12.0-RELEASE]\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12.0.patch\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12.0.patch.asc\n# gpg --verify mds.12.0.patch.asc\n\n[FreeBSD 11.3-PRERELEASE]\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11-stable.patch\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11-stable.patch.asc\n# gpg --verify mds.11-stable.patch.asc\n\n[FreeBSD 11.2-RELEASE]\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11.2.patch\n# fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11.2.patch.asc\n# gpg --verify mds.11.2.patch.asc\n\nb) Apply the patch.  Execute the following commands as root:\n\n# cd /usr/src\n# patch \u003c /path/to/patch\n\nc) Recompile your kernel as described in\n\u003cURL:https://www.FreeBSD.org/handbook/kernelconfig.html\u003e. \n\nMitigation Configuration\n\nSystems with users, processes, or virtual machines in different trust\ndomains should disable Hyper-Threading by setting the\nmachdep.hyperthreading_allowed tunable to 0:\n\n# echo machdep.hyperthreading_allowed=0 \u003e\u003e /boot/loader.conf\n\nTo activate the MDS mitigation set the hw.mds_disable sysctl.  The settings\nare:\n\n0 - mitigation disabled\n1 - VERW instruction (microcode) mitigation enabled\n2 - Software sequence mitigation enabled (not recommended)\n3 - Automatic VERW or Software selection\n\nAutomatic mode uses the VERW instruction if supported by the CPU / microcode,\nor software sequences if not.  To enable automatic mode at boot:\n\n# echo hw.mds_disable=3 \u003e\u003e /etc/sysctl.conf\n\nReboot the system:\n\n# shutdown -r +10min \"Security update\"\n\nCheck the mitigation status:\n\n# sysctl hw.mds_disable_state\nhw.mds_disable_state: software Silvermont\n\nVI.  Correction details\n\nThe following list contains the correction revision numbers for each\naffected branch. \n\nBranch/path                                                      Revision\n- -------------------------------------------------------------------------\nstable/12/                                                        r347567\nreleng/12.0/                                                      r346594\nstable/11/                                                        r347568\nreleng/11.2/                                                      r347595\n- -------------------------------------------------------------------------\n\nTo see which files were modified by a particular revision, run the\nfollowing command, replacing NNNNNN with the revision number, on a\nmachine with Subversion installed:\n\n# svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base\n\nOr visit the following URL, replacing NNNNNN with the revision number:\n\n\u003cURL:https://svnweb.freebsd.org/base?view=revision\u0026revision=NNNNNN\u003e\n\nVII",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-12127"
      },
      {
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "db": "PACKETSTORM",
        "id": "152916"
      },
      {
        "db": "PACKETSTORM",
        "id": "154188"
      },
      {
        "db": "PACKETSTORM",
        "id": "152900"
      },
      {
        "db": "PACKETSTORM",
        "id": "153379"
      },
      {
        "db": "PACKETSTORM",
        "id": "152885"
      },
      {
        "db": "PACKETSTORM",
        "id": "152905"
      },
      {
        "db": "PACKETSTORM",
        "id": "152890"
      },
      {
        "db": "PACKETSTORM",
        "id": "152895"
      },
      {
        "db": "PACKETSTORM",
        "id": "152883"
      },
      {
        "db": "PACKETSTORM",
        "id": "152936"
      }
    ],
    "trust": 1.98
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2018-12127",
        "trust": 2.8
      },
      {
        "db": "PACKETSTORM",
        "id": "155281",
        "trust": 1.8
      },
      {
        "db": "SIEMENS",
        "id": "SSA-616472",
        "trust": 1.2
      },
      {
        "db": "SIEMENS",
        "id": "SSA-608355",
        "trust": 1.2
      },
      {
        "db": "MCAFEE",
        "id": "SB10292",
        "trust": 1.2
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622",
        "trust": 0.7
      },
      {
        "db": "LENOVO",
        "id": "LEN-26696",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2019.1754",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.0153",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2019.1705",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2019.1737.2",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.0127",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.1812",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2019.4358",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2019.4321",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "155956",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "156920",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "152952",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "152942",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "108330",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-122055",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-12127",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152916",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "154188",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152900",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "153379",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152885",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152905",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152890",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152895",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152883",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "152936",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "db": "PACKETSTORM",
        "id": "152916"
      },
      {
        "db": "PACKETSTORM",
        "id": "154188"
      },
      {
        "db": "PACKETSTORM",
        "id": "152900"
      },
      {
        "db": "PACKETSTORM",
        "id": "153379"
      },
      {
        "db": "PACKETSTORM",
        "id": "152885"
      },
      {
        "db": "PACKETSTORM",
        "id": "152905"
      },
      {
        "db": "PACKETSTORM",
        "id": "152890"
      },
      {
        "db": "PACKETSTORM",
        "id": "152895"
      },
      {
        "db": "PACKETSTORM",
        "id": "152883"
      },
      {
        "db": "PACKETSTORM",
        "id": "152936"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "id": "VAR-201905-0710",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-122055"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-29T19:26:09.644000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "linux kernel Security vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=92582"
      },
      {
        "title": "The Register",
        "trust": 0.2,
        "url": "https://www.theregister.co.uk/2019/05/14/intel_hyper_threading_mitigations/"
      },
      {
        "title": "Red Hat: Important: kernel security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191167 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm-rhev security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191179 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191168 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm-rhev security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191202 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm-rhev security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191200 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191171 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel-rt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191176 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191186 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191197 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191195 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: redhat-virtualization-host security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191207 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191185 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm-rhev security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191199 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm-rhev security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191201 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: rhvm-setup-plugins security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191206 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191183 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191178 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191177 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191198 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191193 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191180 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: rhvm-appliance security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191208 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191189 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191182 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191184 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191172 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: redhat-virtualization-host security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191209 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191181 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel-rt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191174 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191155 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: vdsm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191203 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191187 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: rhvm-setup-plugins security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191205 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191169 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: vdsm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191204 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: qemu-kvm security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191188 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: kernel security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191196 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: libvirt security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191194 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: Advanced Virtualization security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191455 - Security Advisory"
      },
      {
        "title": "Red Hat: CVE-2018-12127",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2018-12127"
      },
      {
        "title": "Ubuntu Security Notice: linux vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3983-1"
      },
      {
        "title": "Debian Security Advisories: DSA-4444-1 linux -- security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=c960cd2c4c663bee4208c29f78956570"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-288: x86: Inconsistent PV IOMMU discipline",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=5e6e0619bc9879769e2dc27651292ba1"
      },
      {
        "title": "Ubuntu Security Notice: intel-microcode update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3977-3"
      },
      {
        "title": "Ubuntu Security Notice: linux-lts-trusty vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3983-2"
      },
      {
        "title": "Red Hat: Important: qemu-kvm-rhev security, bug fix, and enhancement update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20192553 - Security Advisory"
      },
      {
        "title": "Red Hat: Important: virt:rhel security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191175 - Security Advisory"
      },
      {
        "title": "Debian Security Advisories: DSA-4447-1 intel-microcode -- security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=783d5f8f3ad6bd4b472bac87f78daf39"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-292: x86: insufficient TLB flushing when using PCID",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=6f420d7ce4edc488c67e4f105805e662"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-293: x86: PV kernel context switch corruption",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=6489072c7d814c3eeb410e3c3014742f"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-287: x86: steal_page violates page_struct access discipline",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=2265e0ec672f9854d200348511f0f8de"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-294: x86 shadow: Insufficient TLB flushing when using PCID",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=a3e8998cea5d5825f10ea1c09276196e"
      },
      {
        "title": "Debian CVElist Bug Report Logs: Xen Hypervisor security update for Intel MDS - XSA 297",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=3c5d2f154807c8ff4e324ef14ef12771"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-285: race with pass-through device hotplug",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=58ea80c1aac43705a15b8df06106fc72"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-284: grant table transfer issues on large hosts",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=3fb9629013e9105b3361893f58ff13e2"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-291: x86/PV: page type reference counting issue with failed IOMMU update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=24d344e2b0de0f8050341e180d5e3ad6"
      },
      {
        "title": "Debian CVElist Bug Report Logs: xen: XSA-290: missing preemption in x86 PV page table unvalidation",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=eefa90208138c527071b467dedc4d2d8"
      },
      {
        "title": "HP: HPSBHF03618 rev. 1  -  Intel Microarchitectural Data Sampling Security Updates",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBHF03618"
      },
      {
        "title": "Ubuntu Security Notice: libvirt update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3985-2"
      },
      {
        "title": "Ubuntu Security Notice: libvirt update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3985-1"
      },
      {
        "title": "Ubuntu Security Notice: intel-microcode update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3977-2"
      },
      {
        "title": "Amazon Linux AMI: ALAS-2019-1260",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2019-1260"
      },
      {
        "title": "Ubuntu Security Notice: linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3982-1"
      },
      {
        "title": "Ubuntu Security Notice: intel-microcode update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3977-1"
      },
      {
        "title": "Ubuntu Security Notice: linux vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3984-1"
      },
      {
        "title": "Siemens Security Advisories: Siemens Security Advisory",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=30d0a4e627570cd4d5945ca971daba72"
      },
      {
        "title": "Amazon Linux AMI: ALAS-2019-1205",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2019-1205"
      },
      {
        "title": "Amazon Linux 2: ALAS2-2019-1205",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2-2019-1205"
      },
      {
        "title": "Red Hat: Important: kernel security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191170 - Security Advisory"
      },
      {
        "title": "Ubuntu Security Notice: linux-hwe, linux-azure vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3980-2"
      },
      {
        "title": "Red Hat: Important: kernel-rt security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20191190 - Security Advisory"
      },
      {
        "title": "Debian CVElist Bug Report Logs: qemu: CVE-2019-5008",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=3a83f6ae99e6b2e0c974ac32c9ef74a2"
      },
      {
        "title": "Ubuntu Security Notice: linux-lts-xenial vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3982-2"
      },
      {
        "title": "IBM: IBM Security Bulletin: Vulnerabilities in Intel CPUs affect IBM Integrated Analytics System",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=c47b16f3ebd0fdbec9f73e7f3324fed3"
      },
      {
        "title": "IBM: IBM Security Bulletin: IBM has released Unified Extensible Firmware Interface (UEFI) fixes in response to Intel Microarchitectural Data Sampling (MDS) Side Channel vulnerabilities.",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=bc9f36e4b0d29a9ca06baf362fd957d0"
      },
      {
        "title": "Debian Security Advisories: DSA-4564-1 linux -- security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=6a2efed9e3fbb73861bbf72b19140077"
      },
      {
        "title": "IBM: IBM Addresses Reported Intel Security Vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=ab73c937cee32c79f9fc9bc6ef3cc36d"
      },
      {
        "title": "Debian Security Advisories: DSA-4469-1 libvirt -- security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=4e2fe5b482468cc28e671437a04edddc"
      },
      {
        "title": "Ubuntu Security Notice: qemu update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3978-1"
      },
      {
        "title": "Ubuntu Security Notice: linux-hwe, linux-azure, linux-gcp, linux-oracle vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3981-2"
      },
      {
        "title": "Ubuntu Security Notice: linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3981-1"
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/j1nh0/pdf "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/j1nh0/nisol "
      },
      {
        "title": "Windows-Specture-Meltdown-Mitigation-Script",
        "trust": 0.1,
        "url": "https://github.com/simeononsecurity/Windows-Specture-Meltdown-Mitigation-Script "
      },
      {
        "title": "Windows-Spectre-Meltdown-Mitigation-Script",
        "trust": 0.1,
        "url": "https://github.com/simeononsecurity/Windows-Spectre-Meltdown-Mitigation-Script "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/kali973/spectre-meltdown-checker "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/es0j/hyperbleed "
      },
      {
        "title": "puppet-meltdown",
        "trust": 0.1,
        "url": "https://github.com/timidri/puppet-meltdown "
      },
      {
        "title": "cSpeculationControlFixes",
        "trust": 0.1,
        "url": "https://github.com/poshsecurity/cSpeculationControlFixes "
      },
      {
        "title": "Linux-Tools",
        "trust": 0.1,
        "url": "https://github.com/minutesinch/Linux-Tools "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/merlinepedra25/spectre-meltdown-checker "
      },
      {
        "title": "spectre-meltdown",
        "trust": 0.1,
        "url": "https://github.com/edsonjt81/spectre-meltdown "
      },
      {
        "title": "spectre-meltdown-checker",
        "trust": 0.1,
        "url": "https://github.com/speed47/spectre-meltdown-checker "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/merlinepedra/spectre-meltdown-checker "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/kin-cho/my-spectre-meltdown-checker "
      },
      {
        "title": "Firmware-Security",
        "trust": 0.1,
        "url": "https://github.com/virusbeeE/Firmware-Security "
      },
      {
        "title": "Hardware-and-Firmware-Security-Guidance",
        "trust": 0.1,
        "url": "https://github.com/nsacyber/Hardware-and-Firmware-Security-Guidance "
      },
      {
        "title": "hardware-attacks-state-of-the-art",
        "trust": 0.1,
        "url": "https://github.com/codexlynx/hardware-attacks-state-of-the-art "
      },
      {
        "title": "ansible-everyday",
        "trust": 0.1,
        "url": "https://github.com/kaosagnt/ansible-everyday "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/vincent-deng/veracode-container-security-finding-parser "
      },
      {
        "title": "Threatpost",
        "trust": 0.1,
        "url": "https://threatpost.com/intel-zombieload-side-channel-attack-10-takeaways/144771/"
      },
      {
        "title": "Threatpost",
        "trust": 0.1,
        "url": "https://threatpost.com/apple-patches-intel-side-channel-ios-macos/144743/"
      },
      {
        "title": "Threatpost",
        "trust": 0.1,
        "url": "https://threatpost.com/intel-cpus-impacted-by-new-class-of-spectre-like-attacks/144728/"
      }
    ],
    "sources": [
      {
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-200",
        "trust": 1.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.8,
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html"
      },
      {
        "trust": 1.8,
        "url": "https://www.debian.org/security/2020/dsa-4602"
      },
      {
        "trust": 1.8,
        "url": "https://security.freebsd.org/advisories/freebsd-sa-19:26.mcu.asc"
      },
      {
        "trust": 1.8,
        "url": "http://packetstormsecurity.com/files/155281/freebsd-security-advisory-freebsd-sa-19-26.mcu.html"
      },
      {
        "trust": 1.4,
        "url": "https://access.redhat.com/security/cve/cve-2019-11091"
      },
      {
        "trust": 1.4,
        "url": "https://access.redhat.com/security/cve/cve-2018-12127"
      },
      {
        "trust": 1.4,
        "url": "https://access.redhat.com/security/cve/cve-2018-12130"
      },
      {
        "trust": 1.4,
        "url": "https://access.redhat.com/security/cve/cve-2018-12126"
      },
      {
        "trust": 1.3,
        "url": "https://access.redhat.com/errata/rhsa-2019:2553"
      },
      {
        "trust": 1.2,
        "url": "https://seclists.org/bugtraq/2019/jun/28"
      },
      {
        "trust": 1.2,
        "url": "https://seclists.org/bugtraq/2019/jun/36"
      },
      {
        "trust": 1.2,
        "url": "https://seclists.org/bugtraq/2019/nov/16"
      },
      {
        "trust": 1.2,
        "url": "https://seclists.org/bugtraq/2019/nov/15"
      },
      {
        "trust": 1.2,
        "url": "https://seclists.org/bugtraq/2020/jan/21"
      },
      {
        "trust": 1.2,
        "url": "http://www.arubanetworks.com/assets/alert/aruba-psa-2019-003.txt"
      },
      {
        "trust": 1.2,
        "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en"
      },
      {
        "trust": 1.2,
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
      },
      {
        "trust": 1.2,
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf"
      },
      {
        "trust": 1.2,
        "url": "https://www.synology.com/security/advisory/synology_sa_19_24"
      },
      {
        "trust": 1.2,
        "url": "https://www.freebsd.org/security/advisories/freebsd-sa-19:07.mds.asc"
      },
      {
        "trust": 1.2,
        "url": "https://security.gentoo.org/glsa/202003-56"
      },
      {
        "trust": 1.2,
        "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html"
      },
      {
        "trust": 1.2,
        "url": "https://access.redhat.com/errata/rhsa-2019:1455"
      },
      {
        "trust": 1.2,
        "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html"
      },
      {
        "trust": 1.2,
        "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html"
      },
      {
        "trust": 1.2,
        "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html"
      },
      {
        "trust": 1.2,
        "url": "https://usn.ubuntu.com/3977-3/"
      },
      {
        "trust": 1.2,
        "url": "http://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20190712-01-mds-cn"
      },
      {
        "trust": 1.1,
        "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10292"
      },
      {
        "trust": 1.1,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/oh73sgtj575obcpsjfx6lx7kp2kzien4/"
      },
      {
        "trust": 1.0,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-12126"
      },
      {
        "trust": 1.0,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2019-11091"
      },
      {
        "trust": 1.0,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-12127"
      },
      {
        "trust": 1.0,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-12130"
      },
      {
        "trust": 0.8,
        "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
      },
      {
        "trust": 0.8,
        "url": "https://access.redhat.com/security/vulnerabilities/mds"
      },
      {
        "trust": 0.8,
        "url": "https://bugzilla.redhat.com/):"
      },
      {
        "trust": 0.8,
        "url": "https://access.redhat.com/security/team/key/"
      },
      {
        "trust": 0.8,
        "url": "https://access.redhat.com/security/team/contact/"
      },
      {
        "trust": 0.8,
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "trust": 0.6,
        "url": "https://access.redhat.com/articles/11258"
      },
      {
        "trust": 0.6,
        "url": "http://xenbits.xen.org/xsa/advisory-297.html"
      },
      {
        "trust": 0.6,
        "url": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/adv190013"
      },
      {
        "trust": 0.6,
        "url": "https://www.vmware.com/security/advisories/vmsa-2019-0008.html"
      },
      {
        "trust": 0.6,
        "url": "https://aws.amazon.com/security/security-bulletins/aws-2019-004/"
      },
      {
        "trust": 0.6,
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705312"
      },
      {
        "trust": 0.6,
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667782"
      },
      {
        "trust": 0.6,
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646784"
      },
      {
        "trust": 0.6,
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646781"
      },
      {
        "trust": 0.6,
        "url": "http://www.intel.com/content/www/us/en/homepage.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.chromium.org/chromium-os/mds-on-chromeos"
      },
      {
        "trust": 0.6,
        "url": "https://securityadvisories.paloaltonetworks.com/home/detail/150"
      },
      {
        "trust": 0.6,
        "url": "https://support.citrix.com/article/ctx251995"
      },
      {
        "trust": 0.6,
        "url": "https://chromereleases.googleblog.com/2019/06/stable-channel-update-for-chrome-os-m75.html"
      },
      {
        "trust": 0.6,
        "url": "https://usn.ubuntu.com/3985-1/"
      },
      {
        "trust": 0.6,
        "url": "http://www.debian.org/security/2019/dsa-4444"
      },
      {
        "trust": 0.6,
        "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00018.html"
      },
      {
        "trust": 0.6,
        "url": "https://support.apple.com/en-us/ht210119"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/156920/gentoo-linux-security-advisory-202003-56.html"
      },
      {
        "trust": 0.6,
        "url": "https://vigilance.fr/vulnerability/intel-amd-processors-information-disclosure-via-performance-measurement-29300"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/80874"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2019.4358/"
      },
      {
        "trust": 0.6,
        "url": "https://www.ibm.com/support/pages/node/1118439"
      },
      {
        "trust": 0.6,
        "url": "https://www.securityfocus.com/bid/108330"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.0127/"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2019.4321/"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/81098"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/81030"
      },
      {
        "trust": 0.6,
        "url": "https://support.lenovo.com/us/en/product_security/len-26696"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.0153/"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/152952/ubuntu-security-notice-usn-3985-1.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.ibm.com/support/pages/node/1107009"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/155956/debian-security-advisory-4602-1.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.1812/"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/152942/debian-security-advisory-4447-1.html"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/articles/2974891"
      },
      {
        "trust": 0.1,
        "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10292"
      },
      {
        "trust": 0.1,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/oh73sgtj575obcpsjfx6lx7kp2kzien4/"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/200.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      },
      {
        "trust": 0.1,
        "url": "https://tools.cisco.com/security/center/viewalert.x?alertid=60201"
      },
      {
        "trust": 0.1,
        "url": "https://usn.ubuntu.com/3983-1/"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2019:1203"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-20815"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2018-17963"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-17958"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2019-9824"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2019-6501"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-17963"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2018-17958"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2019-6501"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2018-20815"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2019-9824"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2019:1199"
      },
      {
        "trust": 0.1,
        "url": "https://security-tracker.debian.org/tracker/intel-microcode"
      },
      {
        "trust": 0.1,
        "url": "https://www.debian.org/security/faq"
      },
      {
        "trust": 0.1,
        "url": "https://www.debian.org/security/"
      },
      {
        "trust": 0.1,
        "url": "https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/sa00233-microcode-update-guidance_05132019.pdf"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2019:1177"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2019:1201"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2019:1155"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2019:1198"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-16939"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-3665"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2019:1170"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13215"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2017-11600"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-1068"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2016-7913"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2018-18559"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-1000407"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2016-7913"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2017-17558"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2017-13215"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2017-12190"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2016-8633"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-18559"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-17558"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2017-1000407"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-11600"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2016-8633"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2018-3665"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2018-1068"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2017-16939"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-12190"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.12-stable.patch.asc"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/\u003e."
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.12-stable.patch"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.11.2.patch.asc"
      },
      {
        "trust": 0.1,
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://www.intel.com/content/www/us/en/architecture-and-technology/mds.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.12.0.patch.asc"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.12.0.patch"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.11-stable.patch.asc"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.11-stable.patch"
      },
      {
        "trust": 0.1,
        "url": "https://svnweb.freebsd.org/base?view=revision\u0026revision=nnnnnn\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/patches/sa-19:07/mds.11.2.patch"
      },
      {
        "trust": 0.1,
        "url": "https://security.freebsd.org/advisories/freebsd-sa-19:07.mds.asc\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://www.freebsd.org/handbook/kernelconfig.html\u003e."
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "db": "PACKETSTORM",
        "id": "152916"
      },
      {
        "db": "PACKETSTORM",
        "id": "154188"
      },
      {
        "db": "PACKETSTORM",
        "id": "152900"
      },
      {
        "db": "PACKETSTORM",
        "id": "153379"
      },
      {
        "db": "PACKETSTORM",
        "id": "152885"
      },
      {
        "db": "PACKETSTORM",
        "id": "152905"
      },
      {
        "db": "PACKETSTORM",
        "id": "152890"
      },
      {
        "db": "PACKETSTORM",
        "id": "152895"
      },
      {
        "db": "PACKETSTORM",
        "id": "152883"
      },
      {
        "db": "PACKETSTORM",
        "id": "152936"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "db": "PACKETSTORM",
        "id": "152916"
      },
      {
        "db": "PACKETSTORM",
        "id": "154188"
      },
      {
        "db": "PACKETSTORM",
        "id": "152900"
      },
      {
        "db": "PACKETSTORM",
        "id": "153379"
      },
      {
        "db": "PACKETSTORM",
        "id": "152885"
      },
      {
        "db": "PACKETSTORM",
        "id": "152905"
      },
      {
        "db": "PACKETSTORM",
        "id": "152890"
      },
      {
        "db": "PACKETSTORM",
        "id": "152895"
      },
      {
        "db": "PACKETSTORM",
        "id": "152883"
      },
      {
        "db": "PACKETSTORM",
        "id": "152936"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2019-05-30T00:00:00",
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "date": "2019-05-30T00:00:00",
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "date": "2019-05-15T15:32:09",
        "db": "PACKETSTORM",
        "id": "152916"
      },
      {
        "date": "2019-08-22T20:20:17",
        "db": "PACKETSTORM",
        "id": "154188"
      },
      {
        "date": "2019-05-15T15:22:35",
        "db": "PACKETSTORM",
        "id": "152900"
      },
      {
        "date": "2019-06-21T19:32:22",
        "db": "PACKETSTORM",
        "id": "153379"
      },
      {
        "date": "2019-05-15T15:07:39",
        "db": "PACKETSTORM",
        "id": "152885"
      },
      {
        "date": "2019-05-15T15:23:57",
        "db": "PACKETSTORM",
        "id": "152905"
      },
      {
        "date": "2019-05-15T15:19:53",
        "db": "PACKETSTORM",
        "id": "152890"
      },
      {
        "date": "2019-05-15T15:21:12",
        "db": "PACKETSTORM",
        "id": "152895"
      },
      {
        "date": "2019-05-15T15:06:32",
        "db": "PACKETSTORM",
        "id": "152883"
      },
      {
        "date": "2019-05-15T15:47:43",
        "db": "PACKETSTORM",
        "id": "152936"
      },
      {
        "date": "2019-05-15T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      },
      {
        "date": "2019-05-30T16:29:00.903000",
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2019-06-11T00:00:00",
        "db": "VULHUB",
        "id": "VHN-122055"
      },
      {
        "date": "2023-11-07T00:00:00",
        "db": "VULMON",
        "id": "CVE-2018-12127"
      },
      {
        "date": "2021-10-29T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      },
      {
        "date": "2024-11-21T03:44:38.757000",
        "db": "NVD",
        "id": "CVE-2018-12127"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "152936"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      }
    ],
    "trust": 0.7
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Multiple Intel Product Information Disclosure Vulnerability",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      }
    ],
    "trust": 0.6
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "information disclosure",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201905-622"
      }
    ],
    "trust": 0.6
  }
}

cve-2018-12127

Vulnerability from cvelistv5

Published

2019-05-30 15:38

Modified

2024-08-05 08:30

Severity ?

Summary

References

▼	URL	Tags
	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html	x_refsource_CONFIRM
	https://www.synology.com/security/advisory/Synology_SA_19_24	x_refsource_CONFIRM
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/	vendor-advisory, x_refsource_FEDORA
	http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html	vendor-advisory, x_refsource_SUSE
	https://access.redhat.com/errata/RHSA-2019:1455	vendor-advisory, x_refsource_REDHAT
	https://usn.ubuntu.com/3977-3/	vendor-advisory, x_refsource_UBUNTU
	https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html	mailing-list, x_refsource_MLIST
	https://seclists.org/bugtraq/2019/Jun/28	mailing-list, x_refsource_BUGTRAQ
	https://seclists.org/bugtraq/2019/Jun/36	mailing-list, x_refsource_BUGTRAQ
	http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf	x_refsource_CONFIRM
	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html	vendor-advisory, x_refsource_SUSE
	https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc	vendor-advisory, x_refsource_FREEBSD
	https://access.redhat.com/errata/RHSA-2019:2553	vendor-advisory, x_refsource_REDHAT
	https://kc.mcafee.com/corporate/index?page=content&id=SB10292	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf	x_refsource_CONFIRM
	https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc	vendor-advisory, x_refsource_FREEBSD
	https://seclists.org/bugtraq/2019/Nov/16	mailing-list, x_refsource_BUGTRAQ
	https://seclists.org/bugtraq/2019/Nov/15	mailing-list, x_refsource_BUGTRAQ
	http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html	x_refsource_MISC
	https://www.debian.org/security/2020/dsa-4602	vendor-advisory, x_refsource_DEBIAN
	https://seclists.org/bugtraq/2020/Jan/21	mailing-list, x_refsource_BUGTRAQ
	https://security.gentoo.org/glsa/202003-56	vendor-advisory, x_refsource_GENTOO

Impacted products

	Vendor	Product	Version
	Intel Corporation	Central Processing Units (CPUs)	Version: A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T08:30:57.404Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.synology.com/security/advisory/Synology_SA_19_24"
          },
          {
            "name": "FEDORA-2019-1f5832fc0e",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/"
          },
          {
            "name": "openSUSE-SU-2019:1505",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html"
          },
          {
            "name": "RHSA-2019:1455",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:1455"
          },
          {
            "name": "USN-3977-3",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3977-3/"
          },
          {
            "name": "[debian-lts-announce] 20190620 [SECURITY] [DLA 1789-2] intel-microcode security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html"
          },
          {
            "name": "20190624 [SECURITY] [DSA 4447-2] intel-microcode security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Jun/28"
          },
          {
            "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Jun/36"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en"
          },
          {
            "name": "openSUSE-SU-2019:1805",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html"
          },
          {
            "name": "openSUSE-SU-2019:1806",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html"
          },
          {
            "name": "FreeBSD-SA-19:07",
            "tags": [
              "vendor-advisory",
              "x_refsource_FREEBSD",
              "x_transferred"
            ],
            "url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc"
          },
          {
            "name": "RHSA-2019:2553",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2553"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10292"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
          },
          {
            "name": "FreeBSD-SA-19:26",
            "tags": [
              "vendor-advisory",
              "x_refsource_FREEBSD",
              "x_transferred"
            ],
            "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc"
          },
          {
            "name": "20191112 FreeBSD Security Advisory FreeBSD-SA-19:26.mcu",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Nov/16"
          },
          {
            "name": "20191112 [SECURITY] [DSA 4564-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Nov/15"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html"
          },
          {
            "name": "DSA-4602",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2020/dsa-4602"
          },
          {
            "name": "20200114 [SECURITY] [DSA 4602-1] xen security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2020/Jan/21"
          },
          {
            "name": "GLSA-202003-56",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202003-56"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Central Processing Units (CPUs)",
          "vendor": "Intel Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"
            }
          ]
        }
      ],
      "datePublic": "2019-05-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information Disclosure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-03-26T14:06:07",
        "orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
        "shortName": "intel"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.synology.com/security/advisory/Synology_SA_19_24"
        },
        {
          "name": "FEDORA-2019-1f5832fc0e",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/"
        },
        {
          "name": "openSUSE-SU-2019:1505",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html"
        },
        {
          "name": "RHSA-2019:1455",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:1455"
        },
        {
          "name": "USN-3977-3",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3977-3/"
        },
        {
          "name": "[debian-lts-announce] 20190620 [SECURITY] [DLA 1789-2] intel-microcode security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html"
        },
        {
          "name": "20190624 [SECURITY] [DSA 4447-2] intel-microcode security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Jun/28"
        },
        {
          "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Jun/36"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en"
        },
        {
          "name": "openSUSE-SU-2019:1805",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html"
        },
        {
          "name": "openSUSE-SU-2019:1806",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html"
        },
        {
          "name": "FreeBSD-SA-19:07",
          "tags": [
            "vendor-advisory",
            "x_refsource_FREEBSD"
          ],
          "url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc"
        },
        {
          "name": "RHSA-2019:2553",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2553"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10292"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
        },
        {
          "name": "FreeBSD-SA-19:26",
          "tags": [
            "vendor-advisory",
            "x_refsource_FREEBSD"
          ],
          "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc"
        },
        {
          "name": "20191112 FreeBSD Security Advisory FreeBSD-SA-19:26.mcu",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Nov/16"
        },
        {
          "name": "20191112 [SECURITY] [DSA 4564-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Nov/15"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html"
        },
        {
          "name": "DSA-4602",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2020/dsa-4602"
        },
        {
          "name": "20200114 [SECURITY] [DSA 4602-1] xen security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2020/Jan/21"
        },
        {
          "name": "GLSA-202003-56",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202003-56"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@intel.com",
          "ID": "CVE-2018-12127",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Central Processing Units (CPUs)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Intel Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Information Disclosure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html",
              "refsource": "CONFIRM",
              "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html"
            },
            {
              "name": "https://www.synology.com/security/advisory/Synology_SA_19_24",
              "refsource": "CONFIRM",
              "url": "https://www.synology.com/security/advisory/Synology_SA_19_24"
            },
            {
              "name": "FEDORA-2019-1f5832fc0e",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/"
            },
            {
              "name": "openSUSE-SU-2019:1505",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html"
            },
            {
              "name": "RHSA-2019:1455",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:1455"
            },
            {
              "name": "USN-3977-3",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3977-3/"
            },
            {
              "name": "[debian-lts-announce] 20190620 [SECURITY] [DLA 1789-2] intel-microcode security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html"
            },
            {
              "name": "20190624 [SECURITY] [DSA 4447-2] intel-microcode security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Jun/28"
            },
            {
              "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Jun/36"
            },
            {
              "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
              "refsource": "CONFIRM",
              "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en"
            },
            {
              "name": "openSUSE-SU-2019:1805",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html"
            },
            {
              "name": "openSUSE-SU-2019:1806",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html"
            },
            {
              "name": "FreeBSD-SA-19:07",
              "refsource": "FREEBSD",
              "url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc"
            },
            {
              "name": "RHSA-2019:2553",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2553"
            },
            {
              "name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10292",
              "refsource": "CONFIRM",
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10292"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
            },
            {
              "name": "FreeBSD-SA-19:26",
              "refsource": "FREEBSD",
              "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc"
            },
            {
              "name": "20191112 FreeBSD Security Advisory FreeBSD-SA-19:26.mcu",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Nov/16"
            },
            {
              "name": "20191112 [SECURITY] [DSA 4564-1] linux security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Nov/15"
            },
            {
              "name": "http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html"
            },
            {
              "name": "DSA-4602",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2020/dsa-4602"
            },
            {
              "name": "20200114 [SECURITY] [DSA 4602-1] xen security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2020/Jan/21"
            },
            {
              "name": "GLSA-202003-56",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202003-56"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
    "assignerShortName": "intel",
    "cveId": "CVE-2018-12127",
    "datePublished": "2019-05-30T15:38:38",
    "dateReserved": "2018-06-11T00:00:00",
    "dateUpdated": "2024-08-05T08:30:57.404Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

var-201905-0710

Vulnerability from variot

echo 'machdep.hyperthreading_allowed=0 >> /boot/loader.conf'

shutdown

freebsd-update fetch

freebsd-update install

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12-stable.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12-stable.patch.asc

gpg --verify mds.12-stable.patch.asc

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12.0.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.12.0.patch.asc

gpg --verify mds.12.0.patch.asc

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11-stable.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11-stable.patch.asc

gpg --verify mds.11-stable.patch.asc

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11.2.patch

fetch https://security.FreeBSD.org/patches/SA-19:07/mds.11.2.patch.asc

gpg --verify mds.11.2.patch.asc

cd /usr/src

patch < /path/to/patch

echo machdep.hyperthreading_allowed=0 >> /boot/loader.conf

echo hw.mds_disable=3 >> /etc/sysctl.conf

shutdown -r +10min "Security update"

sysctl hw.mds_disable_state

svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base

cve-2018-12127

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature