 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.108845 |
| Category: | General |
| Title: | Missing Linux Kernel mitigations for 'SRBDS - Special Register Buffer Data Sampling' hardware vulnerabilities |
| Summary: | The remote host is missing one or more known mitigation(s) on; Linux Kernel side for the referenced 'SRBDS - Special Register Buffer Data Sampling' hardware; vulnerabilities. |
| Description: | Summary: The remote host is missing one or more known mitigation(s) on Linux Kernel side for the referenced 'SRBDS - Special Register Buffer Data Sampling' hardware vulnerabilities. Solution: The following solutions exist: - Update to a more recent Linux Kernel to receive mitigations on Kernel level and info about the mitigation status from it - Enable the mitigation(s) in the Linux Kernel (might be disabled depending on the configuration) Additional possible mitigations (if provided by the vendor) are to: - install a Microcode update - update the BIOS of the Mainboard Note: Please create an override for this result if one of the following applies: - the sysfs file is not available but other mitigations like a Microcode update is already in place - the sysfs file is not available but the CPU of the host is not affected - the reporting of the Linux Kernel is not correct (this is out of the control of this VT) CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2020-0543 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DT2VKDMQ3I37NBNJ256A2EXR7OJHXXKZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NQZMOSHLTBBIECENNXA6M7DN5FEED4KI/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T5OUM24ZC43G4IDT3JUCIHJTSDXJSK6Y/ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html http://www.openwall.com/lists/oss-security/2020/07/14/5 SuSE Security Announcement: openSUSE-SU-2020:0818 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00025.html SuSE Security Announcement: openSUSE-SU-2020:0965 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00024.html SuSE Security Announcement: openSUSE-SU-2020:0985 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00031.html https://usn.ubuntu.com/4385-1/ https://usn.ubuntu.com/4387-1/ https://usn.ubuntu.com/4388-1/ https://usn.ubuntu.com/4389-1/ https://usn.ubuntu.com/4390-1/ https://usn.ubuntu.com/4391-1/ https://usn.ubuntu.com/4392-1/ https://usn.ubuntu.com/4393-1/ |
| Copyright | Copyright (C) 2020 Greenbone AG |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |