CVE-2024-2193
Speculative Race Condition impacts modern CPU architectures that support speculative execution, also known as GhostRace.
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Speculative Race Condition impacts modern CPU architectures that support speculative execution, also known as GhostRace.
A Speculative Race Condition (SRC) vulnerability that impacts modern CPU architectures supporting speculative execution (related to Spectre V1) has been disclosed. An unauthenticated attacker can exploit this vulnerability to disclose arbitrary data from the CPU using race conditions to access the speculative executable code paths.
Reserved 2024-03-05 | Published 2024-03-15 | Updated 2024-10-29 | Assigner certccCWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Thanks to Hany Ragab and Cristiano Giuffrida from the VUSec group at VU Amsterdam and Andrea Mambretti and Anil Kurmus from IBM Research Europe, Zurich for discovering and reporting this vulnerability.
xenbits.xen.org/xsa/advisory-453.html
www.vusec.net/projects/ghostrace/
download.vusec.net/papers/ghostrace_sec24.pdf
git.kernel.org/...d=944d5fe50f3f03daacfea16300e656a1691c4a23
ibm.github.io/...urity-research-updates/2024/03/12/ghostrace
www.amd.com/...es/product-security/bulletin/amd-sb-7016.html
www.kb.cert.org/vuls/id/488902
lists.fedoraproject.org/...ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A/
lists.fedoraproject.org/...H63LGAQXPEVJOES73U4XK65I6DASOAAG/
lists.fedoraproject.org/...EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK/
www.openwall.com/lists/oss-security/2024/03/12/14
Support options
