CVE-2023-20588
Summary
| CVE | CVE-2023-20588 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-08-08 18:15:00 UTC |
| Updated | 2024-04-01 15:45:00 UTC |
| Description | A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. |
Risk And Classification
Problem Types: CWE-369
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Amd | Athlon Gold 3150g | - | All | All | All |
| Hardware | Amd | Athlon Gold 3150ge | - | All | All | All |
| Operating System | Amd | Athlon Gold 3150ge Firmware | - | All | All | All |
| Operating System | Amd | Athlon Gold 3150g Firmware | - | All | All | All |
| Hardware | Amd | Athlon Gold Pro 3150g | - | All | All | All |
| Hardware | Amd | Athlon Gold Pro 3150ge | - | All | All | All |
| Operating System | Amd | Athlon Gold Pro 3150ge Firmware | - | All | All | All |
| Operating System | Amd | Athlon Gold Pro 3150g Firmware | - | All | All | All |
| Hardware | Amd | Athlon Pro 300ge | - | All | All | All |
| Operating System | Amd | Athlon Pro 300ge Firmware | - | All | All | All |
| Hardware | Amd | Athlon Silver 3050ge | - | All | All | All |
| Operating System | Amd | Athlon Silver 3050ge Firmware | - | All | All | All |
| Hardware | Amd | Athlon Silver Pro 3125ge | - | All | All | All |
| Operating System | Amd | Athlon Silver Pro 3125ge Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7251 | - | All | All | All |
| Operating System | Amd | Epyc 7251 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7261 | - | All | All | All |
| Operating System | Amd | Epyc 7261 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7281 | - | All | All | All |
| Operating System | Amd | Epyc 7281 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7301 | - | All | All | All |
| Operating System | Amd | Epyc 7301 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7351 | - | All | All | All |
| Hardware | Amd | Epyc 7351p | - | All | All | All |
| Operating System | Amd | Epyc 7351p Firmware | - | All | All | All |
| Operating System | Amd | Epyc 7351 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7371 | - | All | All | All |
| Operating System | Amd | Epyc 7371 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7401 | - | All | All | All |
| Hardware | Amd | Epyc 7401p | - | All | All | All |
| Operating System | Amd | Epyc 7401p Firmware | - | All | All | All |
| Operating System | Amd | Epyc 7401 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7451 | - | All | All | All |
| Operating System | Amd | Epyc 7451 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7501 | - | All | All | All |
| Operating System | Amd | Epyc 7501 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7551 | - | All | All | All |
| Hardware | Amd | Epyc 7551p | - | All | All | All |
| Operating System | Amd | Epyc 7551p Firmware | - | All | All | All |
| Operating System | Amd | Epyc 7551 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7571 | - | All | All | All |
| Operating System | Amd | Epyc 7571 Firmware | - | All | All | All |
| Hardware | Amd | Epyc 7601 | - | All | All | All |
| Operating System | Amd | Epyc 7601 Firmware | - | All | All | All |
| Hardware | Amd | Ryzen 3 3200g | - | All | All | All |
| Hardware | Amd | Ryzen 3 3200ge | - | All | All | All |
| Operating System | Amd | Ryzen 3 3200ge Firmware | - | All | All | All |
| Operating System | Amd | Ryzen 3 3200g Firmware | - | All | All | All |
| Hardware | Amd | Ryzen 3 Pro 3200g | - | All | All | All |
| Hardware | Amd | Ryzen 3 Pro 3200ge | - | All | All | All |
| Operating System | Amd | Ryzen 3 Pro 3200ge Firmware | - | All | All | All |
| Operating System | Amd | Ryzen 3 Pro 3200g Firmware | - | All | All | All |
| Hardware | Amd | Ryzen 5 3400g | - | All | All | All |
| Operating System | Amd | Ryzen 5 3400g Firmware | - | All | All | All |
| Hardware | Amd | Ryzen 5 Pro 3350g | - | All | All | All |
| Hardware | Amd | Ryzen 5 Pro 3350ge | - | All | All | All |
| Operating System | Amd | Ryzen 5 Pro 3350ge Firmware | - | All | All | All |
| Operating System | Amd | Ryzen 5 Pro 3350g Firmware | - | All | All | All |
| Hardware | Amd | Ryzen 5 Pro 3400g | - | All | All | All |
| Hardware | Amd | Ryzen 5 Pro 3400ge | - | All | All | All |
| Operating System | Amd | Ryzen 5 Pro 3400ge Firmware | - | All | All | All |
| Operating System | Amd | Ryzen 5 Pro 3400g Firmware | - | All | All | All |
| Operating System | Debian | Debian Linux | 10.0 | All | All | All |
| Operating System | Debian | Debian Linux | 11.0 | All | All | All |
| Operating System | Debian | Debian Linux | 12.0 | All | All | All |
| Operating System | Fedoraproject | Fedora | 37 | All | All | All |
| Operating System | Fedoraproject | Fedora | 38 | All | All | All |
| Operating System | Fedoraproject | Fedora | 39 | All | All | All |
| Operating System | Microsoft | Windows 10 1507 | All | All | All | All |
| Operating System | Microsoft | Windows 10 1607 | All | All | All | All |
| Operating System | Microsoft | Windows 10 1809 | All | All | All | All |
| Operating System | Microsoft | Windows 10 21h2 | All | All | All | All |
| Operating System | Microsoft | Windows 10 22h2 | All | All | All | All |
| Operating System | Microsoft | Windows 11 21h2 | All | All | All | All |
| Operating System | Microsoft | Windows 11 22h2 | All | All | All | All |
| Operating System | Microsoft | Windows 11 23h2 | All | All | All | All |
| Operating System | Microsoft | Windows Server 2008 | - | sp2 | All | All |
| Operating System | Microsoft | Windows Server 2008 | r2 | sp1 | All | All |
| Operating System | Microsoft | Windows Server 2012 | - | All | All | All |
| Operating System | Microsoft | Windows Server 2012 | r2 | All | All | All |
| Operating System | Microsoft | Windows Server 2016 | All | All | All | All |
| Operating System | Microsoft | Windows Server 2019 | All | All | All | All |
| Operating System | Microsoft | Windows Server 2022 23h2 | All | All | All | All |
| Operating System | Xen | Xen | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| oss-security - Xen Security Advisory 439 v2 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| [SECURITY] [DLA 3623-1] linux-5.10 security update | MISC | lists.debian.org | |
| [SECURITY] Fedora 39 Update: xen-4.17.2-2.fc39 - package-announce - Fedora Mailing-Lists | MISC | lists.fedoraproject.org | |
| Debian -- Security Information -- DSA-5480-1 linux | MISC | www.debian.org | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| [SECURITY] Fedora 38 Update: xen-4.17.2-2.fc38 - package-announce - Fedora Mailing-Lists | MISC | lists.fedoraproject.org | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| [SECURITY] Fedora 37 Update: xen-4.16.5-2.fc37 - package-announce - Fedora Mailing-Lists | MISC | lists.fedoraproject.org | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7007 | MISC | www.amd.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| Debian -- Security Information -- DSA-5492-1 linux | MISC | www.debian.org | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| XSA-439 - Xen Security Advisories | MISC | xenbits.xen.org | |
| oss-security - Re: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak | MISC | www.openwall.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 160963 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2023-12858)
- 160978 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2023-12874)
- 160982 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2023-12911)
- 160985 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2023-12910)
- 199766 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6386-1)
- 199767 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-6384-1)
- 199769 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6383-1)
- 199770 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6387-1)
- 199785 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6387-2)
- 199791 Ubuntu Security Notification for Linux kernel (Raspberry Pi) Vulnerabilities (USN-6386-2)
- 199796 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6386-3)
- 199883 Ubuntu Security Notification for Linux kernel (NVIDIA) Vulnerabilities (USN-6466-1)
- 200038 Ubuntu Security Notification for Linux kernel (AWS) Vulnerabilities (USN-6577-1)
- 200067 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6602-1)
- 200072 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6604-1)
- 200079 Ubuntu Security Notification for Linux kernel (Azure) Vulnerabilities (USN-6604-2)
- 284559 Fedora Security Update for xen (FEDORA-2023-4125279976)
- 284611 Fedora Security Update for xen (FEDORA-2023-948136565a)
- 285241 Fedora Security Update for xen (FEDORA-2023-35d2ad2328)
- 379614 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2024:0017)
- 503355 Alpine Linux Security Update for xen
- 503356 Alpine Linux Security Update for xen
- 503358 Alpine Linux Security Update for xen
- 503436 Alpine Linux Security Update for xen
- 503557 Alpine Linux Security Update for xen
- 505972 Alpine Linux Security Update for xen
- 6000212 Debian Security Update for linux (DSA 5480-1)
- 6000220 Debian Security Update for linux (DSA 5492-1)
- 6000265 Debian Security Update for linux-5.10 (DLA 3623-1)
- 6140076 AWS Bottlerocket Security Update for kernel (GHSA-8vwp-f338-rj3v)
- 673595 EulerOS Security Update for kernel (EulerOS-SA-2023-3247)
- 673644 EulerOS Security Update for kernel (EulerOS-SA-2023-3336)
- 673692 EulerOS Security Update for kernel (EulerOS-SA-2023-3275)
- 673848 EulerOS Security Update for kernel (EulerOS-SA-2023-3217)
- 754832 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3600-1)
- 754833 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3599-1)
- 754855 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3656-1)
- 754863 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3680-1)
- 754866 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3684-1)
- 754867 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3683-1)
- 754868 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3682-1)
- 754869 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3681-1)
- 754876 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3687-1)
- 754883 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3705-1)
- 754884 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3704-1)
- 754899 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3599-2)
- 754900 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3600-2)
- 754901 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3704-2)
- 754903 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3683-2)
- 754958 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:3832-1)
- 754959 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:3831-1)
- 754997 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:3895-1)
- 754998 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:3894-1)
- 754999 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:3903-1)
- 755000 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:3902-1)
- 755026 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3964-1)
- 755037 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3971-1)
- 755038 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3969-1)
- 755043 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3988-1)
- 755282 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:4476-1)
- 755283 SUSE Enterprise Linux Security Update for xen (SUSE-SU-2023:4475-1)
- 92085 Microsoft Windows Security Update for December 2023
- 92089 Microsoft Azure Stack Hub Security Updates for December 2023