699994 – (CVE-2019-11135) [TRACKER] TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135)

Bug 699994 (CVE-2019-11135) - [TRACKER] TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135)

Summary: [TRACKER] TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135)

Status:	RESOLVED FIXED

Alias:	CVE-2019-11135

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:	https://www.intel.com/content/www/us/...
Whiteboard:
Keywords:	Tracker

Depends on:	XSA-304, XSA-305 699998
Blocks:
	Show dependency tree

Reported:	2019-11-13 10:51 UTC by GLSAMaker/CVETool Bot
Modified:	2021-01-28 01:15 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2019-11-13 10:51:40 UTC

CVE-2019-11135 (https://nvd.nist.gov/vuln/detail/CVE-2019-11135):
  A flaw was found in the implementation of Intel Transactional
  Synchronization Extensions (TSX) abortion where a local authenticated
  attacker with the ability to monitor execution time is able to infer TSX
  memory state by comparing abort execution times.