Security tracker / CVE-2022-4543

CVE-2022-4543

KASLR Leakage Achievable even with KPTI through Prefetch Side-Channel

References

• Debian security tracker
• cve.org
• https://www.openwall.com/lists/oss-security/2022/12/16/3
• https://www.willsroot.io/2022/12/entrybleed.html
• https://github.com/KSPP/linux/issues/361

Notes

 bwh> I think this is effectively ignored upstream and KASLR is not
 bwh> expected to be resistant to local attacks.

Bugs

Status

Branch	Status
upstream
6.18-upstream-stable
6.17-upstream-stable
6.12-upstream-stable
6.6-upstream-stable
6.1-upstream-stable
5.10-upstream-stable
4.19-upstream-stable
sid
6.12-trixie-security
6.1-bookworm-security
5.10-bullseye-security
4.19-buster-security