VIR Vulnerability Intelligence Relay

CVE-2018-3639

unknown
Published — · Modified —
CVSS v3
VIR risk

Description

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

OS impact
OSVersionStatusFixed in
suse slesaffected
debian debianbookwormfixed3.20180703.1
debian debianbullseyefixed3.20180703.1
debian debianforkyfixed3.20180703.1
debian debiansidfixed3.20180703.1
debian debiantrixiefixed3.20180703.1

References

💬 Discuss CVE-2018-3639 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.