CVE-2023-20588

MEDIUM

Debian Linux < 10.0.10240.20345 - Divide By Zero

Title source: rule

Description

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

References (28)

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/25/3

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/25/4

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/25/5

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/25/7

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/25/8

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/26/5

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/26/8

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/26/9

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/09/27/1

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/03/12

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/03/13

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/03/14

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/03/15

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/03/16

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/03/9

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/04/1

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/04/2

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/04/3

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2023/10/04/4

[Third Party Advisory] http://xenbits.xen.org/xsa/advisory-439.html

... and 8 more

Scores

CVSS v3 5.5

EPSS 0.0687

EPSS Percentile 91.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-369

Status published

Products (50)

amd/athlon_gold_3150g_firmware

amd/athlon_gold_3150ge_firmware

amd/athlon_gold_pro_3150g_firmware

amd/athlon_gold_pro_3150ge_firmware

amd/athlon_pro_300ge_firmware

amd/athlon_silver_3050ge_firmware

amd/athlon_silver_pro_3125ge_firmware

amd/epyc_7251_firmware

amd/epyc_7261_firmware

amd/epyc_7281_firmware

... and 40 more

Published Aug 08, 2023

Tracked Since Feb 18, 2026