ALPINE-CVE-2023-20588 — Vulnetix

ALPINE-CVE-2023-20588 PUBLISHED CVSS 5.5 MEDIUM

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products

Vendor	Product	Versions
Alpine:v3.18	xen	4.14.0-r1, 4.14.0-r0, 4.13.1-r5
Alpine:v3.21	xen	4.8.1-r3, 4.8.1-r4, 4.9.0-r0
Alpine:v3.19	xen	4.9.0-r5, 4.9.0-r7, 4.9.0-r8
Alpine:v3.23	xen	4.9.0-r0, 4.9.0-r1, 4.4.1-r7
Alpine:v3.22	xen	4.4.1-r8, 4.9.0-r5, 4.9.0-r4
Alpine:v3.17	xen	4.12.0-r3, 4.2.1-r0, 4.16.5-r0
Alpine:v3.15	xen	4.9.1-r3, 4.9.1-r2, 4.9.1-r1
Alpine:v3.16	xen	4.16.1-r4, 4.16.1-r3, 4.16.1-r1
Alpine:v3.20	xen	4.9.1-r3, 4.9.1-r2, 4.9.1-r1

Timeline

Aug 8, 2023 CVE Published
Dec 3, 2025 CVE Updated
Apr 30, 2026 Distribution Patch

References

https://security.alpinelinux.org/vuln/CVE-2023-20588 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›