1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
|
PublicDate: 2006-04-20
Candidate: CVE-2006-1056
References:
http://www.ubuntu.com/usn/usn-302-1
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1056
Description:
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on
AMD64 and other 7th and 8th generation AuthenticAMD processors, only
save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an
exception is pending, which allows one process to determine portions of the
state of floating point instructions of other processes, which can be
leveraged to obtain sensitive information such as cryptographic keys. NOTE:
this is the documented behavior of AMD64 processors, but it is inconsistent
with Intel processors in a security-relevant fashion that was not addressed
by the kernels.
Ubuntu-Description:
Notes:
Bugs:
dapper_xen-3.0: DNE
edgy_xen-3.0: released (3.0.3-0ubuntu1)
feisty_xen-3.0: released (3.0.3-0ubuntu1)
devel_xen-3.0: DNE
dapper_xen-3.1: DNE
edgy_xen-3.1: DNE
feisty_xen-3.1: DNE
devel_xen-3.1: released (3.1.0-0ubuntu15)
dapper_kfreebsd-5: needed
edgy_kfreebsd-5: released (5.4-17)
feisty_kfreebsd-5: released (5.4-17)
devel_kfreebsd-5: released (5.4-17)
dapper_linux-source-2.6.15: released (2.6.15-29.58)
edgy_linux-source-2.6.15: DNE
feisty_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE
dapper_linux-source-2.6.17: DNE
edgy_linux-source-2.6.17: released (2.6.17.1-12.40)
feisty_linux-source-2.6.17: DNE
devel_linux-source-2.6.17: DNE
upstream_kfreebsd-5:
upstream_linux-source-2.6.15:
upstream_linux-source-2.6.17:
upstream_xen-3.0:
upstream_xen-3.1:
|