Details of VAR-202106-1422

ID

VAR-202106-1422

CVE

CVE-2021-26313

TITLE

plural CPU Vulnerability in leaking resources to the wrong area in the product

Trust: 0.8

sources: JVNDB: JVNDB-2021-007904

DESCRIPTION

Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorrect speculation and could result in data leakage. plural CPU The product contains a vulnerability related to the leakage of resources to the wrong area.Information may be obtained. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202107-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Xen: Multiple vulnerabilities Date: July 12, 2021 Bugs: #760144, #766474, #783456, #795054 ID: 202107-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in Xen, the worst of which could result in privilege escalation. Background ========== Xen is a bare-metal hypervisor. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-emulation/xen < 4.15.0-r1 >= 4.14.2-r1 >= 4.15.0-r1 Description =========== Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact ====== Please review the referenced CVE identifiers for details. Workaround ========== There is no known workaround at this time. Resolution ========== All Xen 4.14.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-4.14.2-r1" All Xen 4.15.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-4.15.0-r1" References ========== [ 1 ] CVE-2020-29479 https://nvd.nist.gov/vuln/detail/CVE-2020-29479 [ 2 ] CVE-2020-29486 https://nvd.nist.gov/vuln/detail/CVE-2020-29486 [ 3 ] CVE-2020-29487 https://nvd.nist.gov/vuln/detail/CVE-2020-29487 [ 4 ] CVE-2020-29566 https://nvd.nist.gov/vuln/detail/CVE-2020-29566 [ 5 ] CVE-2020-29567 https://nvd.nist.gov/vuln/detail/CVE-2020-29567 [ 6 ] CVE-2020-29568 https://nvd.nist.gov/vuln/detail/CVE-2020-29568 [ 7 ] CVE-2020-29569 https://nvd.nist.gov/vuln/detail/CVE-2020-29569 [ 8 ] CVE-2020-29570 https://nvd.nist.gov/vuln/detail/CVE-2020-29570 [ 9 ] CVE-2020-29571 https://nvd.nist.gov/vuln/detail/CVE-2020-29571 [ 10 ] CVE-2021-0089 https://nvd.nist.gov/vuln/detail/CVE-2021-0089 [ 11 ] CVE-2021-26313 https://nvd.nist.gov/vuln/detail/CVE-2021-26313 [ 12 ] CVE-2021-28687 https://nvd.nist.gov/vuln/detail/CVE-2021-28687 [ 13 ] CVE-2021-28690 https://nvd.nist.gov/vuln/detail/CVE-2021-28690 [ 14 ] CVE-2021-28691 https://nvd.nist.gov/vuln/detail/CVE-2021-28691 [ 15 ] CVE-2021-28692 https://nvd.nist.gov/vuln/detail/CVE-2021-28692 [ 16 ] CVE-2021-28693 https://nvd.nist.gov/vuln/detail/CVE-2021-28693 [ 17 ] CVE-2021-3308 https://nvd.nist.gov/vuln/detail/CVE-2021-3308 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202107-30 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2021 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5 . For the stable distribution (buster), these problems have been fixed in version 4.11.4+107-gef32c7afa2-1. We recommend that you upgrade your xen packages. For the detailed security status of xen please refer to its security tracker page at: https://security-tracker.debian.org/tracker/xen Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmDJEsUACgkQEMKTtsN8 TjaQhBAAvItimzF6QWWRYY5Ce+wWgee8vCrG0ZgrtTWbxlnT8XHLB97tQdBE/ytZ FXyaaoklSe8gWxA3e4wF3/mf8EcVi4MRXPtB+WL9If0uhjg24pm9hS75lUWNQzP4 wo7mShj/WBmvpz0BsvXMZRiVJm4m6mtbb+oBCCGqRQr70HvkOPn0jw5tGdqPt/1u f0q7mbun4cMmebdN2ZcBnIY0zVsCPvTdTMY5weiB3egBogJhP12XsgxPmv44GUpi rvQIngsOld6eJ3wfOmMacMxZ3a+SyhIjRC5lMfdxp9SOC8b2hsQaBaR9+dYLUtKR ieDyUVfFdXgAMsHA5Gn5PQivNHC0wVqx5nf3HIPvhgjpdGPbvgs+dM4OLkLrFW4r nyrJ70OVwUOBay8HJu1Gw2xyu54NmUCi6DN53SD7AxGrnjiyBfb72OeR4elZz5KT gggGzNfMoqPQPG3mPC7GW1PbJ0D4pxZmfr3jftgVdBvBEvuS4KqngoZqL9ZHj9n5 2sT5EycoQZS/O5JaG3KdZsiay9E7LodNmw5mvGvgeYouW+MpFVdOEzvB7F91ya5U TxY+nj5J1lboyB8CymcxensLet2g7n2IYZNPrH1Sr1EEx9Zg0znVCuOE3QhJI60O JFAnmgSM/XPrIqxtZR+gX8nxqTBPWYDaTtRFZOVhA7hDpVmnAGo= =stfn -----END PGP SIGNATURE-----

Trust: 1.89

sources: NVD: CVE-2021-26313 // JVNDB: JVNDB-2021-007904 // VULHUB: VHN-385383 // PACKETSTORM: 163474 // PACKETSTORM: 169073

AFFECTED PRODUCTS

vendor:	intel	model:	core i7-7700k	scope:	eq	version:	-	Trust: 1.0
vendor:	broadcom	model:	bcm2711	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	core i9-9900k	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	core i7-10700k	scope:	eq	version:	-	Trust: 1.0
vendor:	debian	model:	linux	scope:	eq	version:	10.0	Trust: 1.0
vendor:	arm	model:	cortex-a72	scope:	eq	version:	-	Trust: 1.0
vendor:	xen	model:	xen	scope:	eq	version:	*	Trust: 1.0
vendor:	intel	model:	xeon silver 4214	scope:	eq	version:	-	Trust: 1.0
vendor:	broadcom	model:	bcm2711	scope:	-	version:	-	Trust: 0.8
vendor:	インテル	model:	intel xenon silver 4214	scope:	-	version:	-	Trust: 0.8
vendor:	インテル	model:	intel core i9-9900k	scope:	-	version:	-	Trust: 0.8
vendor:	インテル	model:	intel core i7-10700k	scope:	-	version:	-	Trust: 0.8
vendor:	arm	model:	cortex-a72	scope:	-	version:	-	Trust: 0.8
vendor:	debian	model:	gnu/linux	scope:	-	version:	-	Trust: 0.8
vendor:	インテル	model:	intel core i7-7700k	scope:	-	version:	-	Trust: 0.8
vendor:	xen プロジェクト	model:	xen	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2021-007904 // NVD: CVE-2021-26313

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2021-26313
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2021-26313
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202106-624
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-385383
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2021-26313
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-385383
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2021-26313
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2021-26313
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-385383 // JVNDB: JVNDB-2021-007904 // CNNVD: CNNVD-202106-624 // NVD: CVE-2021-26313

PROBLEMTYPE DATA

problemtype:	CWE-203	Trust: 1.1
problemtype:	CWE-208	Trust: 1.0
problemtype:	Leakage of resources to the wrong area (CWE-668) [NVD Evaluation ]	Trust: 0.8
problemtype:	CWE-668	Trust: 0.1

sources: VULHUB: VHN-385383 // JVNDB: JVNDB-2021-007904 // NVD: CVE-2021-26313

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202106-624

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-202106-624

PATCH

title:	top page	url:	https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1003	Trust: 0.8
title:	Intel Processors Repair measures for information disclosure vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=154846	Trust: 0.6

sources: JVNDB: JVNDB-2021-007904 // CNNVD: CNNVD-202106-624

EXTERNAL IDS

db:	NVD	id:	CVE-2021-26313	Trust: 3.5
db:	PACKETSTORM	id:	163474	Trust: 0.8
db:	JVNDB	id:	JVNDB-2021-007904	Trust: 0.8
db:	OPENWALL	id:	OSS-SECURITY/2021/06/10/10	Trust: 0.6
db:	OPENWALL	id:	OSS-SECURITY/2021/06/09/2	Trust: 0.6
db:	OPENWALL	id:	OSS-SECURITY/2021/06/10/11	Trust: 0.6
db:	OPENWALL	id:	OSS-SECURITY/2021/06/10/1	Trust: 0.6
db:	LENOVO	id:	LEN-60191	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2135	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2086	Trust: 0.6
db:	CNNVD	id:	CNNVD-202106-624	Trust: 0.6
db:	VULHUB	id:	VHN-385383	Trust: 0.1
db:	PACKETSTORM	id:	169073	Trust: 0.1

sources: VULHUB: VHN-385383 // JVNDB: JVNDB-2021-007904 // PACKETSTORM: 163474 // PACKETSTORM: 169073 // CNNVD: CNNVD-202106-624 // NVD: CVE-2021-26313

REFERENCES

url:	https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1003	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2021-26313	Trust: 1.0
url:	http://www.openwall.com/lists/oss-security/2021/06/09/2	Trust: 0.6
url:	https://www.debian.org/security/2021/dsa-4931	Trust: 0.6
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/sva2ny26mmxoodumyzn5dcu3fxmbmbob/	Trust: 0.6
url:	http://xenbits.xen.org/xsa/advisory-375.html	Trust: 0.6
url:	http://www.openwall.com/lists/oss-security/2021/06/10/1	Trust: 0.6
url:	http://www.openwall.com/lists/oss-security/2021/06/10/10	Trust: 0.6
url:	http://www.openwall.com/lists/oss-security/2021/06/10/11	Trust: 0.6
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/h36u6cnrec436w6gyo7qumjivea35scv/	Trust: 0.6
url:	https://packetstormsecurity.com/files/163474/gentoo-linux-security-advisory-202107-30.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2086	Trust: 0.6
url:	https://support.lenovo.com/us/en/product_security/len-60191	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2135	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2021-0089	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28690	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28692	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29571	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29487	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3308	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29567	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29569	Trust: 0.1
url:	https://security.gentoo.org/glsa/202107-30	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28693	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29479	Trust: 0.1
url:	https://security.gentoo.org/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29486	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28687	Trust: 0.1
url:	https://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29570	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29568	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-29566	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28691	Trust: 0.1
url:	https://www.debian.org/security/faq	Trust: 0.1
url:	https://security-tracker.debian.org/tracker/xen	Trust: 0.1
url:	https://www.debian.org/security/	Trust: 0.1

sources: VULHUB: VHN-385383 // JVNDB: JVNDB-2021-007904 // PACKETSTORM: 163474 // PACKETSTORM: 169073 // CNNVD: CNNVD-202106-624 // NVD: CVE-2021-26313

CREDITS

Gentoo

Trust: 0.1

sources: PACKETSTORM: 163474

SOURCES

db:	VULHUB	id:	VHN-385383
db:	JVNDB	id:	JVNDB-2021-007904
db:	PACKETSTORM	id:	163474
db:	PACKETSTORM	id:	169073
db:	CNNVD	id:	CNNVD-202106-624
db:	NVD	id:	CVE-2021-26313

LAST UPDATE DATE

2024-08-14T13:06:25.722000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-385383	date:	2022-08-01T00:00:00
db:	JVNDB	id:	JVNDB-2021-007904	date:	2022-02-25T08:59:00
db:	CNNVD	id:	CNNVD-202106-624	date:	2022-08-02T00:00:00
db:	NVD	id:	CVE-2021-26313	date:	2022-08-01T12:41:58.077

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-385383	date:	2021-06-09T00:00:00
db:	JVNDB	id:	JVNDB-2021-007904	date:	2022-02-25T00:00:00
db:	PACKETSTORM	id:	163474	date:	2021-07-13T15:09:27
db:	PACKETSTORM	id:	169073	date:	2021-06-28T19:12:00
db:	CNNVD	id:	CNNVD-202106-624	date:	2021-06-08T00:00:00
db:	NVD	id:	CVE-2021-26313	date:	2021-06-09T12:15:07.750