Unrated severityNVD Advisory· Published Aug 13, 2024· Updated Nov 5, 2024
CVE-2023-20584
CVE-2023-20584
Description
IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity.
Affected products
25- osv-coords23 versionspkg:rpm/almalinux/iwl1000-firmwarepkg:rpm/almalinux/iwl100-firmwarepkg:rpm/almalinux/iwl105-firmwarepkg:rpm/almalinux/iwl135-firmwarepkg:rpm/almalinux/iwl2000-firmwarepkg:rpm/almalinux/iwl2030-firmwarepkg:rpm/almalinux/iwl3160-firmwarepkg:rpm/almalinux/iwl3945-firmwarepkg:rpm/almalinux/iwl4965-firmwarepkg:rpm/almalinux/iwl5000-firmwarepkg:rpm/almalinux/iwl5150-firmwarepkg:rpm/almalinux/iwl6000-firmwarepkg:rpm/almalinux/iwl6000g2a-firmwarepkg:rpm/almalinux/iwl6000g2b-firmwarepkg:rpm/almalinux/iwl6050-firmwarepkg:rpm/almalinux/iwl7260-firmwarepkg:rpm/almalinux/libertas-sd8686-firmwarepkg:rpm/almalinux/libertas-sd8787-firmwarepkg:rpm/almalinux/libertas-usb8388-firmwarepkg:rpm/almalinux/libertas-usb8388-olpc-firmwarepkg:rpm/almalinux/linux-firmwarepkg:rpm/almalinux/linux-firmware-whencepkg:rpm/almalinux/netronome-firmware
< 1:39.31.5.1-124.el8_10.1+ 22 more
- (no CPE)range: < 1:39.31.5.1-124.el8_10.1
- (no CPE)range: < 39.31.5.1-124.el8_10.1
- (no CPE)range: < 18.168.6.1-124.el8_10.1
- (no CPE)range: < 18.168.6.1-124.el8_10.1
- (no CPE)range: < 18.168.6.1-124.el8_10.1
- (no CPE)range: < 18.168.6.1-124.el8_10.1
- (no CPE)range: < 1:25.30.13.0-124.el8_10.1
- (no CPE)range: < 15.32.2.9-124.el8_10.1
- (no CPE)range: < 228.61.2.24-124.el8_10.1
- (no CPE)range: < 8.83.5.1_1-124.el8_10.1
- (no CPE)range: < 8.24.2.2-124.el8_10.1
- (no CPE)range: < 9.221.4.1-124.el8_10.1
- (no CPE)range: < 18.168.6.1-124.el8_10.1
- (no CPE)range: < 18.168.6.1-124.el8_10.1
- (no CPE)range: < 41.28.5.1-124.el8_10.1
- (no CPE)range: < 1:25.30.13.0-124.el8_10.1
- (no CPE)range: < 20240827-124.git3cff7109.el8_10
- (no CPE)range: < 20240827-124.git3cff7109.el8_10
- (no CPE)range: < 2:20240827-124.git3cff7109.el8_10
- (no CPE)range: < 20240827-124.git3cff7109.el8_10
- (no CPE)range: < 20240827-124.git3cff7109.el8_10
- (no CPE)range: < 20240905-143.3.el9_4
- (no CPE)range: < 20240905-143.3.el9_4
- AMD/AMD EPYC™ 7003 Processorsv5Range: MilanPI 1.0.0.C
- AMD/AMD EPYC™ 9004 Processorsv5Range: GenoaPI 1.0.0.B
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.