CVE-2023-39368
Published: March 15, 2024Last modified: March 15, 2024
Description
Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 6.5 |
| Attack Vector | NETWORK |
| Attack complexity | LOW |
| Privileges required | NONE |
| User interaction | REQUIRED |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | intel-ucode | Fixed (20240312-r0) |
| Stream | intel-ucode | Fixed (20240312-r0) |
References
- https://lists.debian.org/debian-lts-announce/2024/05/msg00003.html
- https://security.netapp.com/advisory/ntap-20240405-0007/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00972.html