Wind River Support Network


OVP8-488 : Security Advisory - linux - CVE-2019-11091 MDSUM

Created: May 30, 2019    Updated: Dec 23, 2019
Resolved Date: Nov 7, 2019
Previous ID: LIN8-10992
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel


CVE-2019-11091 	Microarchitectural Data Sampling Uncacheable Memory

Under certain conditions, data in microarchitectural structures that the currently-running software does not have permission to access may be speculatively accessed by faulting or assisting load or store operations. This does not result in incorrect program execution because these operations never complete, and their results are never returned to software. However, software may be able to forward this speculative-only data to a side channel disclosure gadget in a way that potentially allows malicious actors to infer the data.
Live chat