Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

CVE-2023-52482 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2023-52482

CVE-2023-52482

HIGH7.8

x86/srso: Add SRSO mitigation for Hygon processors

Published Feb 29, 2024

Modified 9 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

x86/srso: Add SRSO mitigation for Hygon processors

Add mitigation for the speculative return stack overflow vulnerability which exists on Hygon processors too.

References

WEB

https://git.kernel.org/stable/c/6ce2f297a7168274547d0b5aea6c7c16268b8a96

WEB

https://git.kernel.org/stable/c/a5ef7d68cea1344cf524f04981c2b3f80bedbb0d

WEB

https://git.kernel.org/stable/c/cf43b304b6952b549d58feabc342807b334f03d4

WEB

https://git.kernel.org/stable/c/e7ea043bc3f19473561c08565047b3f1671bf35d

WEB

https://git.kernel.org/stable/c/f090a8b4d2e3ec6f318d6fdab243a2edc5a8cc37

WEB

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2023-52482

CVSS Analysis

CVSS v3.1

7.8

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

HighA:H

7.8/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Ecosystems

Timeline

PublishedFeb 29, 2024

ModifiedMay 21, 2025