CVE-2020-0543

Description

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
• v2.0•LOW•Score: 2.1AV:L/AC:L/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.48%• Percentile: 65%

Techniques & Countermeasures

• CWE-459•Incomplete Cleanup

  The product does not properly "clean up" and remove temporary or supporting resources after they have been used.

Affected Systems

• canonical•ubuntu_linux

  12.04 | 14.04 | 16.04 | 18.04 | 19.10 | 20.04

• fedoraproject•fedora

  31 | 32

• intel•celeron_1000m_firmware

  na

• intel•celeron_1005m_firmware

  na

• intel•celeron_1007u_firmware

  na

• intel•celeron_1017u_firmware

  na

• intel•celeron_1019y_firmware

  na

• intel•celeron_1020e_firmware

  na

• intel•celeron_1020m_firmware

  na

• intel•celeron_1037u_firmware

  na

• intel•celeron_1047ue_firmware

  na

• intel•celeron_2955u_firmware

  na

• intel•celeron_2957u_firmware

  na

• intel•celeron_2970m_firmware

  na

• intel•celeron_2980u_firmware

  na

• intel•celeron_2981u_firmware

  na

• intel•celeron_3755u_firmware

  na

• intel•celeron_3765u_firmware

  na

• intel•celeron_3855u_firmware

  na

• intel•celeron_3865u_firmware

  na

• intel•celeron_3955u_firmware

  na

• intel•celeron_3965u_firmware

  na

• intel•celeron_3965y_firmware

  na

• intel•celeron_5305u_firmware

  na

• intel•celeron_725c_firmware

  na

• intel•celeron_927ue_firmware

  na

• intel•celeron_g1610_firmware

  na

• intel•celeron_g1610t_firmware

  na

• intel•celeron_g1620_firmware

  na

• intel•celeron_g1620t_firmware

  na

• intel•celeron_g1630_firmware

  na

• intel•celeron_g1820_firmware

  na

• intel•celeron_g1820t_firmware

  na

• intel•celeron_g1830_firmware

  na

• intel•celeron_g1840_firmware

  na

• intel•celeron_g1840t_firmware

  na

• intel•celeron_g1850_firmware

  na

• intel•celeron_g3900_firmware

  na

• intel•celeron_g3900t_firmware

  na

• intel•celeron_g3900te_firmware

  na

• intel•celeron_g3902e_firmware

  na

• intel•celeron_g3920_firmware

  na

• intel•celeron_g3920t_firmware

  na

• intel•celeron_g3930e_firmware

  na

• intel•celeron_g3930te_firmware

  na

• intel•celeron_g3940_firmware

  na

• intel•celeron_g4900_firmware

  na

• intel•celeron_g4900t_firmware

  na

• intel•celeron_g4920_firmware

  na

• intel•celeron_g4930_firmware

  na

Showing first 50 affected entries in server-rendered view.

References (19)

• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html
• https://usn.ubuntu.com/4385-1/
• https://usn.ubuntu.com/4388-1/
• http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00025.html
• https://usn.ubuntu.com/4392-1/
• https://usn.ubuntu.com/4393-1/
• https://usn.ubuntu.com/4389-1/
• https://usn.ubuntu.com/4387-1/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NQZMOSHLTBBIECENNXA6M7DN5FEED4KI/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T5OUM24ZC43G4IDT3JUCIHJTSDXJSK6Y/
• https://usn.ubuntu.com/4390-1/
• https://usn.ubuntu.com/4391-1/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DT2VKDMQ3I37NBNJ256A2EXR7OJHXXKZ/
• http://www.openwall.com/lists/oss-security/2020/07/14/5
• http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00024.html
• http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00031.html
• https://cert-portal.siemens.com/productcert/pdf/ssa-534763.pdf
• https://kc.mcafee.com/corporate/index?page=content&id=SB10318
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/