A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks.??L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn\'t need retpolines or IBPB??after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker at L2 with code execution can execute code on an indirect branch on the host machine. We recommend upgrading to Kernel 6.2 or past commit??2e7eab81425a
Find out more about CVE-2022-2196 from the MITRE-CVE dictionary and NIST NVD
Login may be required to access defects or downloads.
Product Name | Status | Defect | Fixed | Downloads |
---|---|---|---|---|
Linux | ||||
Wind River Linux LTS 17 | Won't Fix | -- | -- | -- |
Wind River Linux 8 | Requires LTSS | -- | -- | -- |
Wind River Linux 9 | Requires LTSS | -- | -- | -- |
Wind River Linux 7 | Requires LTSS | -- | -- | -- |
Wind River Linux LTS 21 | Fixed |
LIN1021-4947 |
10.21.20.17 | -- |
Wind River Linux LTS 22 | Fixed |
LIN1022-2701 |
10.22.33.7 | -- |
Wind River Linux LTS 18 | Not Vulnerable | -- | -- | -- |
Wind River Linux LTS 19 | Fixed |
LIN1019-9212 |
10.19.45.28 | -- |
Wind River Linux CD release | Fixed |
LINCD-11142 |
10.23.13.0 | -- |
Wind River Linux 6 | Requires LTSS | -- | -- | -- |
Wind River Linux LTS 23 | Not Vulnerable | -- | -- | -- |
VxWorks | ||||
VxWorks 7 | Not Vulnerable | -- | -- | -- |
VxWorks 6.9 | Not Vulnerable | -- | -- | -- |
Helix Virtualization Platform Cert Edition | ||||
Helix Virtualization Platform Cert Edition | Not Vulnerable | -- | -- | -- |
Product Name | Status | Defect | Fixed | Downloads |
---|