Changes between Version 4 and Version 5 of Ticket #19455


Ignore:
Timestamp:
03/19/2024 06:05:36 PM (8 weeks ago)
Author:
Bruce Dubbs
Comment:

Updated description format and added initial security scores there.

Legend:

Unmodified
Added
Removed
Modified

  • Ticket #19455 – Description

    v4 v5  
    11New release.
    22
    3 Security fixes for CVE-2023-39368 (denial of service via network access), CVE-2023-38575 (information disclosure via local access), CVE-2023-28746 (information disclosure via local access on some Atom processors, and E cores of Alder Lake & Raptor Lake processors), CVE-2023-22655 (local privilege escalation with SGX or TDX), and CVE-2023-43490 (information disclosure via local access with SGX).  Note that SGX and TDX are unsupported on LFS at all.
     3Security scores/fixes for
     4- 6.5 CVE-2023-39368 (denial of service via network access),
     5- 5.5 CVE-2023-38575 (information disclosure via local access),
     6- 6.5 CVE-2023-28746 (information disclosure via local access on some Atom processors, and E cores of Alder Lake & Raptor Lake processors),
     7- 6.1 CVE-2023-22655 (local privilege escalation with SGX or TDX), and
     8- 5.3 CVE-2023-43490 (information disclosure via local access with SGX).  Note that SGX and TDX are unsupported on LFS at all.