Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not properly clear previous data from registers when using an XSAVE or XRSTOR to extend the state components of a saved or restored vCPU after touching other restored extended registers, which allows local guest OSes to obtain sensitive information by reading the registers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: debian
Published: 2013-09-30T19:00:00
Updated: 2024-08-06T15:04:48.344Z
Reserved: 2013-01-26T00:00:00
Link: CVE-2013-1442
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-09-30T21:55:07.037
Modified: 2024-11-21T01:49:35.367
Link: CVE-2013-1442
Redhat