Intel processor - side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)ID: oval:org.secpod.oval:def:48691 | Date: (C)2018-11-05 (M)2024-01-29 |
Class: VULNERABILITY | Family: unix |
This is a flaw in the Intel processor execution engine sharing on SMT (e.g. Hyper-Threading) architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.
Platform: |
Red Hat Enterprise Linux 7 |