VDB

ALPINE-CVE-2018-3620

ALPINE-CVE-2018-3620 PUBLISHED CVSS 5.599999904632568 MEDIUM

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.

Risk Scores

CVSS 3.0
5.599999904632568
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected Products

VendorProductVersions
Alpine:v3.15xen4.3.1-r0, 4.3.0-r2, 4.3.0-r3
Alpine:v3.22xen4.9.1-r3, 4.0.1-r1, 4.0.1-r2
Alpine:v3.19xen4.3.0-r0, 4.0.1-r0, 4.0.1-r1
Alpine:v3.6xen0, 4.8.4-r0, 4.8.3-r1
Alpine:v3.14xen4.1.2-r3, 4.3.0-r8, 4.7.1-r3
Alpine:v3.12xen4.9.0-r0, 4.8.1-r4, 4.6.0-r1
Alpine:v3.18xen4.2.0-r5, 4.2.0-r4, 4.2.0-r5
Alpine:v3.13xen4.4.1-r8, 0, 4.0.1-r0
Alpine:v3.24xen0
Alpine:v3.21xen4.4.1-r6, 4.4.1-r7, 4.4.1-r8
Alpine:v3.11xen4.1.2-r3, 4.0.1-r2, 4.0.1-r0
Alpine:v3.17xen4.1.2-r10, 0, 4.9.1-r3
Alpine:v3.16xen4.2.0-r1, 0, 4.0.1-r0
Alpine:v3.9xen4.0.1-r1, 4.4.1-r3, 4.4.1-r4
Alpine:v3.20xen4.1.2-r7, 4.3.1-r0, 4.3.1-r2
Alpine:v3.7xen4.9.2-r3, 0, 0
Alpine:v3.10xen0, 0, 4.0.1-r0
Alpine:v3.23xen0, 4.0.1-r0, 4.0.1-r1

Timeline

  • Aug 14, 2018 CVE Published
  • Apr 30, 2026 Distribution Patch
  • Jun 9, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›