Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged
Permalink CVE-2023-31315
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): HIGH
  • Privileges required (PR): HIGH
  • User interaction (UI): NONE
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 6 months ago
Improper validation in a model specific register (MSR) could allow …

Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.

References

Affected products

PI
  • <Milan PI 1.0.0.D
epyc_embedded_3000
  • ==various
epyc_embedded_7002
  • ==various
epyc_embedded_7003
  • ==various
epyc_embedded_9003
  • <emgenoa.pi.1.0.0.7
  • ==various
ryzen_embedded_5000
  • ==various
ryzen_embedded_7000
  • ==various
ryzen_embedded_r1000
  • ==various
ryzen_embedded_r2000
  • ==various
ryzen_embedded_v1000
  • ==various
ryzen_embedded_v2000
  • ==various
ryzen_embedded_v3000
  • ==various
AMD EPYC™ Embedded 3000
  • ==various
AMD EPYC™ Embedded 7002
  • ==various
AMD EPYC™ Embedded 7003
  • ==various
AMD EPYC™ Embedded 9003
  • <EmbGenoaPI 1.0.0.7
AMD Ryzen™ Embedded 5000
  • ==various
AMD Ryzen™ Embedded 7000
  • ==various
1st_gen_amd_epyc_processors
  • <naples.pi.1.0.0.m
2nd_gen_amd_epyc_processors
  • <rome.pi.1.0.0.j
3rd_gen_amd_epyc_processors
  • <milan.pi.1.0.0.d
4th_gen_amd_epyc_processors
  • <genoa_pi_1.0.0.c
AMD Ryzen™ Embedded R1000
  • ==various
AMD Ryzen™ Embedded R2000
  • ==various
AMD Ryzen™ Embedded V1000
  • ==various
AMD Ryzen™ Embedded V2000
  • ==various
AMD Ryzen™ Embedded V3000
  • ==various
ryzen_7000_desktop_processors
  • <comboam5pi.1.2.0.1
1st Gen AMD EPYC™ Processors
  • <Naples PI 1.0.0.M
2nd Gen AMD EPYC™ Processors
  • <Rome PI 1.0.0.J
4th Gen AMD EPYC™ Processors
  • <Genoa PI 1.0.0.C
ryzen_threadripper_pro_processors
  • <castlepeakwspi-swrx8.1.0.0.8
  • <chagallwspi-swrx8.1.0.0.8
ryzen_7045_series_mobile_processors
  • <dragonrangefl1.1.0.0.3e
ryzen_3000_series_desktop_processors
  • ==various
ryzen_5000_series_desktop_processors
  • <comboam4v2pi.1.2.0.cb
  • ==various
ryzen_6000_processors_with_radeongraphics
  • <remembrandtpi-fp7.1.0.0.b
ryzen_7020_processors_with_radeongraphics
  • <mendocinopi-ft6.1.0.0.7
ryzen_7035_processors_with_radeongraphics
  • <remembrandtpi-fp7.1.0.0.b
ryzen_threadripper_3000_series_processors
  • <castlepeakpl-sp3r3.1.0.0.b
AMD Ryzen™ 7045 Series Mobile Processors
  • <DragonRangeFL1 1.0.0.3e
AMD Ryzen™ 3000 Series Desktop Processors
  • ==various
AMD Ryzen™ 5000 Series Desktop Processors
  • <ComboAM4v2PI 1.2.0.cb
AMD Ryzen™ 7000 Series Desktop Processors
  • <ComboAM5PI 1.2.0.1
AMD Ryzen™ Threadripper™ PRO Processors
  • <CastlePeakWSPI-sWRX8 1.0.0.D
  • <ChagallWSPI-sWRX8 1.0.0.8
ryzen_threadripper_pro_3000wx_series_processors
  • <chagallwspi-swrx8.1.0.0.8
ryzen_8000_series_processors_with_radeongraphics
  • <comboam5pi.1.2.0.1
AMD Ryzen™ Threadripper™ 3000 Series Processors
  • <CastlePeakPI-SP3r3 1.0.0.B
ryzen_4000_series_mobile_processors_with_radeon_graphics
  • <renoirpi-fp6.1.0.0.e
ryzen_5000_series_mobile_processors_with_radeon_graphics
  • <cezannepi-fp6.1.0.1.1
ryzen_7030_series-mobile_processors_with_radeon_graphics
  • <cezannepi-fp6
ryzen_7040_series_mobile_processors_with_radeon_graphics
  • <phoenixpi-fp8-fp7.1.1.0.3
AMD Ryzen™ Threadripper™ PRO 3000WX Series Processors
  • <ChagallWSPI-sWRX8 1.0.0.8
athlon_3000_series_mobile_processors_with_radeon_graphics
  • <picasso-fp5.1.0.1.2
  • <pollockpi-ft5.1.0.0.8
ryzen_3000_series_desktop_processors_with_radeon_graphics
  • <picasso-fp5.1.0.1.2
ryzen_4000_series_desktop_processors_with_radeon_graphics
  • <comboam4v2pi.1.2.0.cb
ryzen_5000_series_desktop_processors_with_radeon_graphics
  • <comboam4v2pi.1.2.0.cb
  • ==various
AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics
  • <RembrandtPI-FP7 1.0.0.B
AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics
  • <MendocinoPI-FT6 1.0.0.7
AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics
  • <RembrandtPI-FP7 1.0.0.B
AMD Ryzen™ 8000 Series Processors with Radeon™ Graphics
  • <ComboAM5PI 1.2.0.1
AMD Ryzen™ 3000 Series Mobile Processor with Radeon™ Graphics
  • <Picasso-FP5 1.0.1.2
AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics
  • <RenoirPI-FP6 1.0.0.E
AMD Ryzen™ 5000 Series Desktop processor with Radeon™ Graphics
  • <ComboAM4v2PI 1.2.0.cb
AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics
  • <CezannePI-FP6 1.0.1.1
AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics
  • <CezannePI-FP6
AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics
  • <PhoenixPI-FP8-FP7 1.1.0.3
AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics
  • <PollockPI-FT5 1.0.0.8
  • <Picasso-FP5 1.0.1.2
AMD Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics
  • <ComboAM4v2PI 1.2.0.cb

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

  • nixos-unstable -