Unrated severityNVD Advisory· Published Feb 4, 2024· Updated Nov 8, 2025

Kernel: marvin vulnerability side-channel leakage in the rsa decryption operation

CVE-2023-6240

Description

A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel. This issue may allow a network attacker to decrypt ciphertexts or forge signatures, limiting the services that use that private key.

Affected products

Red Hat/Red Hat Enterprise Linux 8v52 versions
cpe:/a:redhat:enterprise_linux:8::realtime+ 1 more
- cpe:/a:redhat:enterprise_linux:8::realtimerange: 0:4.18.0-553.5.1.rt7.346.el8_10
- cpe:/o:redhat:enterprise_linux:8::baseosrange: 0:4.18.0-553.5.1.el8_10
Red Hat/Red Hat Enterprise Linux 9.0 Extended Update Supportv52 versions
cpe:/a:redhat:rhel_eus:9.0::realtime+ 1 more
- cpe:/a:redhat:rhel_eus:9.0::realtimerange: 0:5.14.0-70.101.1.rt21.173.el9_0
- cpe:/o:redhat:rhel_eus:9.0::baseosrange: 0:5.14.0-70.101.1.el9_0
Red Hat/Red Hat Enterprise Linux 9.2 Extended Update Supportv52 versions
cpe:/a:redhat:rhel_eus:9.2::appstream+ 1 more
- cpe:/a:redhat:rhel_eus:9.2::appstreamrange: 0:5.14.0-284.62.1.el9_2
- cpe:/a:redhat:rhel_eus:9.2::nfvrange: 0:5.14.0-284.62.1.rt14.347.el9_2
Red Hat/Red Hat Enterprise Linux 6v5
cpe:/o:redhat:enterprise_linux:6
Red Hat/Red Hat Enterprise Linux 7v5
cpe:/o:redhat:enterprise_linux:7
Red Hat/Red Hat Enterprise Linux 9v52 versions
cpe:/o:redhat:enterprise_linux:9+ 1 more
- cpe:/o:redhat:enterprise_linux:9
- cpe:/o:redhat:enterprise_linux:9::baseosrange: 0:5.14.0-427.16.1.el9_4
osv-coords83 versions
pkg:apk/chainguard/linux-aws-6.12 pkg:apk/chainguard/linux-aws-6.18 pkg:apk/chainguard/linux-aws-generic pkg:apk/chainguard/linux-azure-6.12 pkg:apk/chainguard/linux-azure-6.18 pkg:apk/chainguard/linux-azure-generic pkg:apk/chainguard/linux-gcp-6.12 pkg:apk/chainguard/linux-gcp-6.18 pkg:apk/chainguard/linux-gcp-generic pkg:apk/chainguard/linux-qemu-6.12 pkg:apk/chainguard/linux-qemu-6.18 pkg:apk/chainguard/linux-qemu-6.18-bootc-boot-installed pkg:apk/chainguard/linux-qemu-generic pkg:apk/chainguard/linux-qemu-generic-bootc-boot-installed pkg:apk/chainguard/linux-qemu-melange pkg:apk/chainguard/linux-qemu-rc pkg:apk/chainguard/linux-vmware-6.12 pkg:apk/chainguard/linux-vmware-6.18 pkg:apk/chainguard/linux-vmware-generic pkg:rpm/almalinux/bpftool pkg:rpm/almalinux/kernel pkg:rpm/almalinux/kernel-64k pkg:rpm/almalinux/kernel-64k-core pkg:rpm/almalinux/kernel-64k-debug pkg:rpm/almalinux/kernel-64k-debug-core pkg:rpm/almalinux/kernel-64k-debug-devel pkg:rpm/almalinux/kernel-64k-debug-devel-matched pkg:rpm/almalinux/kernel-64k-debug-modules pkg:rpm/almalinux/kernel-64k-debug-modules-core pkg:rpm/almalinux/kernel-64k-debug-modules-extra pkg:rpm/almalinux/kernel-64k-devel pkg:rpm/almalinux/kernel-64k-devel-matched pkg:rpm/almalinux/kernel-64k-modules pkg:rpm/almalinux/kernel-64k-modules-core pkg:rpm/almalinux/kernel-64k-modules-extra pkg:rpm/almalinux/kernel-abi-stablelists pkg:rpm/almalinux/kernel-core pkg:rpm/almalinux/kernel-cross-headers pkg:rpm/almalinux/kernel-debug pkg:rpm/almalinux/kernel-debug-core pkg:rpm/almalinux/kernel-debug-devel pkg:rpm/almalinux/kernel-debug-devel-matched pkg:rpm/almalinux/kernel-debug-modules pkg:rpm/almalinux/kernel-debug-modules-core pkg:rpm/almalinux/kernel-debug-modules-extra pkg:rpm/almalinux/kernel-debug-uki-virt pkg:rpm/almalinux/kernel-devel pkg:rpm/almalinux/kernel-devel-matched pkg:rpm/almalinux/kernel-doc pkg:rpm/almalinux/kernel-headers pkg:rpm/almalinux/kernel-modules pkg:rpm/almalinux/kernel-modules-core pkg:rpm/almalinux/kernel-modules-extra pkg:rpm/almalinux/kernel-rt pkg:rpm/almalinux/kernel-rt-core pkg:rpm/almalinux/kernel-rt-debug pkg:rpm/almalinux/kernel-rt-debug-core pkg:rpm/almalinux/kernel-rt-debug-devel pkg:rpm/almalinux/kernel-rt-debug-kvm pkg:rpm/almalinux/kernel-rt-debug-modules pkg:rpm/almalinux/kernel-rt-debug-modules-core pkg:rpm/almalinux/kernel-rt-debug-modules-extra pkg:rpm/almalinux/kernel-rt-devel pkg:rpm/almalinux/kernel-rt-kvm pkg:rpm/almalinux/kernel-rt-modules pkg:rpm/almalinux/kernel-rt-modules-core pkg:rpm/almalinux/kernel-rt-modules-extra pkg:rpm/almalinux/kernel-tools pkg:rpm/almalinux/kernel-tools-libs pkg:rpm/almalinux/kernel-tools-libs-devel pkg:rpm/almalinux/kernel-uki-virt pkg:rpm/almalinux/kernel-zfcpdump pkg:rpm/almalinux/kernel-zfcpdump-core pkg:rpm/almalinux/kernel-zfcpdump-devel pkg:rpm/almalinux/kernel-zfcpdump-devel-matched pkg:rpm/almalinux/kernel-zfcpdump-modules pkg:rpm/almalinux/kernel-zfcpdump-modules-core pkg:rpm/almalinux/kernel-zfcpdump-modules-extra pkg:rpm/almalinux/libperf pkg:rpm/almalinux/perf pkg:rpm/almalinux/python3-perf pkg:rpm/almalinux/rtla pkg:rpm/almalinux/rv
< 6.12.80-r0+ 82 more
- (no CPE)range: < 6.12.80-r0
- (no CPE)range: < 6.18.21-r0
- (no CPE)range: < 6.18.10-r0
- (no CPE)range: < 6.12.80-r0
- (no CPE)range: < 6.18.21-r0
- (no CPE)range: < 6.18.10-r0
- (no CPE)range: < 6.12.80-r0
- (no CPE)range: < 6.18.21-r0
- (no CPE)range: < 6.18.10-r0
- (no CPE)range: < 6.12.80-r0
- (no CPE)range: < 6.18.21-r0
- (no CPE)range: < 6.18.21-r0
- (no CPE)range: < 0
- (no CPE)range: < 6.18.10-r0
- (no CPE)range: < 6.18.16-r0
- (no CPE)range: < 7.0_rc5-r1
- (no CPE)range: < 6.12.80-r0
- (no CPE)range: < 6.18.21-r0
- (no CPE)range: < 6.18.10-r0
- (no CPE)range: < 7.3.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 4.18.0-553.5.1.rt7.346.el8_10
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 4.18.0-553.5.1.rt7.346.el8_10
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4
- (no CPE)range: < 5.14.0-427.16.1.el9_4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

access.redhat.com/errata/RHSA-2024:1881mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2024:1882mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2024:2758mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2024:3414mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2024:3421mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2024:3618mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2024:3627mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/security/cve/CVE-2023-6240mitrevdb-entryx_refsource_REDHAT
bugzilla.redhat.com/show_bug.cgimitreissue-trackingx_refsource_REDHAT
people.redhat.com/~hkario/marvin/mitre
securitypitfalls.wordpress.com/2023/10/16/experiment-with-side-channel-attacks-yourself/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000