medium
5.5
CWE
369
Advisory Published
Updated

CVE-2023-20588: Xen Security Advisory 439 v1 (CVE-2023-20588) - x86/AMD: Divide speculative information leak

First published: Tue Aug 08 2023(Updated: )

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. 

Credit: psirt@amd.com psirt@amd.com psirt@amd.com

Affected SoftwareAffected VersionHow to fix
Debian Debian Linux=11.0
Debian Debian Linux=12.0
Amd Epyc 7351p Firmware
Amd Epyc 7351p
Amd Epyc 7401p Firmware
Amd Epyc 7401p
Amd Epyc 7551p Firmware
Amd Epyc 7551p
Amd Epyc 7251 Firmware
Amd Epyc 7251
Microsoft Windows 11
Microsoft Windows 11
Amd Epyc 7281 Firmware
Amd Epyc 7281
Amd Epyc 7301 Firmware
Amd Epyc 7301
Amd Epyc 7351 Firmware
Amd Epyc 7351
Amd Epyc 7371 Firmware
Amd Epyc 7371
Amd Epyc 7401 Firmware
Amd Epyc 7401
Amd Epyc 7451 Firmware
Amd Epyc 7451
Amd Epyc 7501 Firmware
Amd Epyc 7501
Amd Epyc 7551 Firmware
Amd Epyc 7551
Amd Epyc 7571 Firmware
Amd Epyc 7571
Amd Epyc 7601 Firmware
Amd Epyc 7601
Amd Ryzen 5 Pro 3400g Firmware
Amd Ryzen 5 Pro 3400g
Amd Ryzen 5 3400g Firmware
Amd Ryzen 5 3400g
Amd Ryzen 5 Pro 3400ge Firmware
Amd Ryzen 5 Pro 3400ge
Amd Ryzen 5 Pro 3350g Firmware
Amd Ryzen 5 Pro 3350g
Amd Ryzen 5 Pro 3350ge Firmware
Amd Ryzen 5 Pro 3350ge
Amd Ryzen 3 Pro 3200g Firmware
Amd Ryzen 3 Pro 3200g
Amd Ryzen 3 3200g Firmware
Amd Ryzen 3 3200g
Amd Ryzen 3 3200ge Firmware
Amd Ryzen 3 3200ge
Amd Ryzen 3 Pro 3200ge Firmware
Amd Ryzen 3 Pro 3200ge
Amd Athlon Pro 300ge Firmware
Amd Athlon Pro 300ge
Amd Athlon Gold 3150ge Firmware
Amd Athlon Gold 3150ge
Amd Athlon Gold Pro 3150ge Firmware
Amd Athlon Gold Pro 3150ge
Amd Athlon Gold 3150g Firmware
Amd Athlon Gold 3150g
Amd Athlon Gold Pro 3150g Firmware
Amd Athlon Gold Pro 3150g
Amd Athlon Silver 3050ge Firmware
Amd Athlon Silver 3050ge
Amd Athlon Silver Pro 3125ge Firmware
Amd Athlon Silver Pro 3125ge
Microsoft Windows 10=21H2
fix available externally
Microsoft Windows 11=21H2
fix available externally
Microsoft Windows Server 2008
fix available externally
fix available externally
Microsoft Windows 10
fix available externally
Microsoft Windows Server 2012
fix available externally
Microsoft Windows Server 2008
fix available externally
fix available externally
Microsoft Windows Server 2022
fix available externally
fix available externally
Microsoft Windows 10=22H2
fix available externally
Microsoft Windows 10=22H2
fix available externally
Microsoft Windows Server 2008
fix available externally
fix available externally
Microsoft Windows 10=1809
fix available externally
Microsoft Windows 10
fix available externally
Microsoft Windows 11=22H2
fix available externally
Microsoft Windows 10=22H2
fix available externally
Microsoft Windows Server 2008
fix available externally
fix available externally
Microsoft Windows 10=21H2
fix available externally
Microsoft Windows 11=23H2
fix available externally
Microsoft Windows 10=1809
fix available externally
Microsoft Windows 10=1607
fix available externally
Microsoft Windows Server 2008 R2
fix available externally
fix available externally
Microsoft Windows 11=23H2
fix available externally
Microsoft Windows 10=21H2
fix available externally
Microsoft Windows Server 2019
fix available externally
Microsoft Windows Server 2008 R2
fix available externally
fix available externally
Microsoft Windows Server 2019
fix available externally
Microsoft Windows 10=1809
fix available externally
Microsoft Windows 11=22H2
fix available externally
Microsoft Windows 11=21H2
fix available externally
Microsoft Windows Server 2022
fix available externally
fix available externally
Microsoft Windows Server 2012
fix available externally
Microsoft Windows 10=1607
fix available externally
Microsoft Windows Server 2022, 23H2 Edition
fix available externally
Microsoft Windows Server 2012 R2
fix available externally
Microsoft Windows Server 2012 R2
fix available externally
Apple Webkit
Microsoft Power Platform
Microsoft Azure Logic Apps
Microsoft Windows
Adobe Prelude
Adobe Illustrator
Adobe InDesign
Adobe Dimension
Adobe Experience Manager
Adobe Substance3D Stager
Adobe Substance3D Sampler
Adobe Substance3D After Effects
Adobe Substance3D Designer
Google Android
SAP Business Technology Platform (SAP BTP)
Atlassian Bamboo
Atlassian Bitbucket
Atlassian JIRA
Atlassian Confluence Data Center
Atlassian Confluence Server
Cisco Apache Struts
VMware Workspace ONE Launcher
FortiGuard FortiOS
FortiGuard FortiPAM HTTPSd daemon
Debian Debian Linux=10.0
All of
Amd Epyc 7351p Firmware
Amd Epyc 7351p
All of
Amd Epyc 7401p Firmware
Amd Epyc 7401p
All of
Amd Epyc 7551p Firmware
Amd Epyc 7551p
All of
Amd Epyc 7251 Firmware
Amd Epyc 7251
All of
Microsoft Windows 11
Microsoft Windows 11
All of
Amd Epyc 7281 Firmware
Amd Epyc 7281
All of
Amd Epyc 7301 Firmware
Amd Epyc 7301
All of
Amd Epyc 7351 Firmware
Amd Epyc 7351
All of
Amd Epyc 7371 Firmware
Amd Epyc 7371
All of
Amd Epyc 7401 Firmware
Amd Epyc 7401
All of
Amd Epyc 7451 Firmware
Amd Epyc 7451
All of
Amd Epyc 7501 Firmware
Amd Epyc 7501
All of
Amd Epyc 7551 Firmware
Amd Epyc 7551
All of
Amd Epyc 7571 Firmware
Amd Epyc 7571
All of
Amd Epyc 7601 Firmware
Amd Epyc 7601
All of
Amd Ryzen 5 Pro 3400g Firmware
Amd Ryzen 5 Pro 3400g
All of
Amd Ryzen 5 3400g Firmware
Amd Ryzen 5 3400g
All of
Amd Ryzen 5 Pro 3400ge Firmware
Amd Ryzen 5 Pro 3400ge
All of
Amd Ryzen 5 Pro 3350g Firmware
Amd Ryzen 5 Pro 3350g
All of
Amd Ryzen 5 Pro 3350ge Firmware
Amd Ryzen 5 Pro 3350ge
All of
Amd Ryzen 3 Pro 3200g Firmware
Amd Ryzen 3 Pro 3200g
All of
Amd Ryzen 3 3200g Firmware
Amd Ryzen 3 3200g
All of
Amd Ryzen 3 3200ge Firmware
Amd Ryzen 3 3200ge
All of
Amd Ryzen 3 Pro 3200ge Firmware
Amd Ryzen 3 Pro 3200ge
All of
Amd Athlon Pro 300ge Firmware
Amd Athlon Pro 300ge
All of
Amd Athlon Gold 3150ge Firmware
Amd Athlon Gold 3150ge
All of
Amd Athlon Gold Pro 3150ge Firmware
Amd Athlon Gold Pro 3150ge
All of
Amd Athlon Gold 3150g Firmware
Amd Athlon Gold 3150g
All of
Amd Athlon Gold Pro 3150g Firmware
Amd Athlon Gold Pro 3150g
All of
Amd Athlon Silver 3050ge Firmware
Amd Athlon Silver 3050ge
All of
Amd Athlon Silver Pro 3125ge Firmware
Amd Athlon Silver Pro 3125ge
Xen Xen
Fedoraproject Fedora=37
Fedoraproject Fedora=38
Fedoraproject Fedora=39
ubuntu/linux-hwe<4.15.0-221.232~16.04.1
4.15.0-221.232~16.04.1
ubuntu/linux-hwe<6.5~
6.5~
ubuntu/linux-hwe-5.4<5.4.0-163.180~18.04.1
5.4.0-163.180~18.04.1
ubuntu/linux-hwe-5.4<6.5~
6.5~
ubuntu/linux-hwe-5.15<5.15.0-84.93~20.04.1
5.15.0-84.93~20.04.1
ubuntu/linux-hwe-5.15<6.5~
6.5~
ubuntu/linux<5.4.0-163.180
5.4.0-163.180
ubuntu/linux<4.15.0-221.232
4.15.0-221.232
ubuntu/linux<4.4.0-250.284
4.4.0-250.284
ubuntu/linux<5.15.0-84.93
5.15.0-84.93
ubuntu/linux<6.5~
6.5~
ubuntu/linux<6.2.0-33.33
6.2.0-33.33
ubuntu/linux-hwe-edge<6.5~
6.5~
ubuntu/linux-lts-xenial<4.4.0-250.284~14.04.1
4.4.0-250.284~14.04.1
ubuntu/linux-lts-xenial<6.5~
6.5~
ubuntu/linux-kvm<4.15.0-1148.153
4.15.0-1148.153
ubuntu/linux-kvm<4.4.0-1128.138
4.4.0-1128.138
ubuntu/linux-kvm<6.2.0-1013.13
6.2.0-1013.13
ubuntu/linux-kvm<5.4.0-1099.105
5.4.0-1099.105
ubuntu/linux-kvm<5.15.0-1042.47
5.15.0-1042.47
ubuntu/linux-kvm<6.5~
6.5~
ubuntu/linux-allwinner<6.5~
6.5~
ubuntu/linux-allwinner-5.19<6.5~
6.5~
ubuntu/linux-aws-5.0<6.5~
6.5~
ubuntu/linux-aws-5.4<5.4.0-1110.119~18.04.1
5.4.0-1110.119~18.04.1
ubuntu/linux-aws-5.4<6.5~
6.5~
ubuntu/linux-aws-5.15<5.15.0-1045.50~20.04.1
5.15.0-1045.50~20.04.1
ubuntu/linux-aws-5.15<6.5~
6.5~
ubuntu/linux-aws-5.19<6.5~
6.5~
ubuntu/linux-aws-hwe<4.15.0-1164.177~16.04.1
4.15.0-1164.177~16.04.1
ubuntu/linux-aws-hwe<6.5~
6.5~
ubuntu/linux-azure<4.15.0-1173.188~14.04.1
4.15.0-1173.188~14.04.1
ubuntu/linux-azure<4.15.0-1173.188~16.04.1
4.15.0-1173.188~16.04.1
ubuntu/linux-azure<6.2.0-1012.12
6.2.0-1012.12
ubuntu/linux-azure<5.4.0-1116.123
5.4.0-1116.123
ubuntu/linux-azure<5.15.0-1047.54
5.15.0-1047.54
ubuntu/linux-azure<6.5~
6.5~
ubuntu/linux-azure-4.15<4.15.0-1173.188
4.15.0-1173.188
ubuntu/linux-azure-4.15<6.5~
6.5~
ubuntu/linux-azure-5.4<5.4.0-1116.123~18.04.1
5.4.0-1116.123~18.04.1
ubuntu/linux-azure-5.4<6.5~
6.5~
ubuntu/linux-azure-5.15<5.15.0-1047.54~20.04.1
5.15.0-1047.54~20.04.1
ubuntu/linux-azure-5.15<6.5~
6.5~
ubuntu/linux-azure-fde<5.15.0-1047.54
5.15.0-1047.54
ubuntu/linux-azure-fde<6.5~
6.5~
ubuntu/linux-azure-fde-5.15<5.15.0-1047.54~20.04.1
5.15.0-1047.54~20.04.1
ubuntu/linux-azure-fde-5.15<6.5~
6.5~
ubuntu/linux-azure-fde-5.19<6.5~
6.5~
ubuntu/linux-bluefield<5.4.0-1071.77
5.4.0-1071.77
ubuntu/linux-bluefield<6.5~
6.5~
ubuntu/linux-dell300x<6.5~
6.5~
ubuntu/linux-azure-edge<6.5~
6.5~
ubuntu/linux-fips<6.5~
6.5~
ubuntu/linux-gcp<4.15.0-1158.175~16.04.1
4.15.0-1158.175~16.04.1
ubuntu/linux-gcp<6.2.0-1014.14
6.2.0-1014.14
ubuntu/linux-gcp<5.4.0-1113.122
5.4.0-1113.122
ubuntu/linux-gcp<5.15.0-1042.50
5.15.0-1042.50
ubuntu/linux-gcp<6.5~
6.5~
ubuntu/linux-gcp-4.15<4.15.0-1158.175
4.15.0-1158.175
ubuntu/linux-gcp-4.15<6.5~
6.5~
ubuntu/linux-gcp-5.4<5.4.0-1113.122~18.04.1
5.4.0-1113.122~18.04.1
ubuntu/linux-gcp-5.4<6.5~
6.5~
ubuntu/linux-gcp-5.15<5.15.0-1042.50~20.04.1
5.15.0-1042.50~20.04.1
ubuntu/linux-gcp-5.15<6.5~
6.5~
ubuntu/linux-gcp-5.19<6.5~
6.5~
ubuntu/linux-gke<5.15.0-1042.47
5.15.0-1042.47
ubuntu/linux-gke<6.5~
6.5~
ubuntu/linux-gke-4.15<6.5~
6.5~
ubuntu/linux-gke-5.0<6.5~
6.5~
ubuntu/linux-gke-5.4<6.5~
6.5~
ubuntu/linux-gke-5.15<6.5~
6.5~
ubuntu/linux-gkeop<5.4.0-1077.81
5.4.0-1077.81
ubuntu/linux-gkeop<5.15.0-1028.33
5.15.0-1028.33
ubuntu/linux-gkeop<6.5~
6.5~
ubuntu/linux-gkeop-5.4<6.5~
6.5~
ubuntu/linux-gkeop-5.15<5.15.0-1028.33~20.04.1
5.15.0-1028.33~20.04.1
ubuntu/linux-gkeop-5.15<6.5~
6.5~
ubuntu/linux-ibm<6.2.0-1010.10
6.2.0-1010.10
ubuntu/linux-ibm<5.4.0-1057.62
5.4.0-1057.62
ubuntu/linux-ibm<5.15.0-1038.41
5.15.0-1038.41
ubuntu/linux-ibm<6.5~
6.5~
ubuntu/linux-ibm-5.4<5.4.0-1057.62~18.04.1
5.4.0-1057.62~18.04.1
ubuntu/linux-ibm-5.4<6.5~
6.5~
ubuntu/linux-intel-5.13<6.5~
6.5~
ubuntu/linux-intel-iotg<5.15.0-1040.46
5.15.0-1040.46
ubuntu/linux-intel-iotg<6.5~
6.5~
ubuntu/linux-intel-iotg-5.15<5.15.0-1040.46~20.04.1
5.15.0-1040.46~20.04.1
ubuntu/linux-intel-iotg-5.15<6.5~
6.5~
ubuntu/linux-iot<5.4.0-1022.23
5.4.0-1022.23
ubuntu/linux-iot<6.5~
6.5~
ubuntu/linux-lowlatency<6.2.0-1013.13
6.2.0-1013.13
ubuntu/linux-lowlatency<5.15.0-84.93
5.15.0-84.93
ubuntu/linux-lowlatency<6.5~
6.5~
ubuntu/linux-lowlatency-hwe-5.15<5.15.0-84.93~20.04.1
5.15.0-84.93~20.04.1
ubuntu/linux-lowlatency-hwe-5.15<6.5~
6.5~
ubuntu/linux-lowlatency-hwe-5.19<6.5~
6.5~
ubuntu/linux-nvidia<5.15.0-1033.33
5.15.0-1033.33
ubuntu/linux-nvidia<6.5~
6.5~
ubuntu/linux-oracle<4.15.0-1127.138~16.04.1
4.15.0-1127.138~16.04.1
ubuntu/linux-oracle<6.2.0-1012.12
6.2.0-1012.12
ubuntu/linux-oracle<5.4.0-1109.118
5.4.0-1109.118
ubuntu/linux-oracle<5.15.0-1044.50
5.15.0-1044.50
ubuntu/linux-oracle<6.5~
6.5~
ubuntu/linux-oracle-5.0<6.5~
6.5~
ubuntu/linux-oracle-5.4<5.4.0-1109.118~18.04.1
5.4.0-1109.118~18.04.1
ubuntu/linux-oracle-5.4<6.5~
6.5~
ubuntu/linux-oracle-5.13<6.5~
6.5~
ubuntu/linux-oracle-5.15<5.15.0-1044.50~20.04.1
5.15.0-1044.50~20.04.1
ubuntu/linux-oracle-5.15<6.5~
6.5~
ubuntu/linux-oem<6.5~
6.5~
ubuntu/linux-oem-5.6<6.5~
6.5~
ubuntu/linux-oem-5.10<6.5~
6.5~
ubuntu/linux-oem-5.14<6.5~
6.5~
ubuntu/linux-oem-5.17<6.5~
6.5~
ubuntu/linux-oem-6.0<6.5~
6.5~
ubuntu/linux-oem-6.1<6.1.0-1022.22
6.1.0-1022.22
ubuntu/linux-oem-6.1<6.5~
6.5~
ubuntu/linux-oem-osp1<6.5~
6.5~
ubuntu/linux-raspi<6.2.0-1013.15
6.2.0-1013.15
ubuntu/linux-raspi<5.4.0-1094.105
5.4.0-1094.105
ubuntu/linux-raspi<5.15.0-1038.41
5.15.0-1038.41
ubuntu/linux-raspi<6.5~
6.5~
ubuntu/linux-raspi2<6.5~
6.5~
ubuntu/linux-raspi-5.4<6.5~
6.5~
ubuntu/linux-raspi-5.4<5.4.0-1094.105~18.04.1
5.4.0-1094.105~18.04.1
ubuntu/linux-riscv<6.2.0-33.33.1
6.2.0-33.33.1
ubuntu/linux-riscv<6.5~
6.5~
ubuntu/linux-riscv-5.15<5.15.0-1041.45~20.04.1
5.15.0-1041.45~20.04.1
ubuntu/linux-riscv-5.15<6.5~
6.5~
ubuntu/linux-snapdragon<6.5~
6.5~
ubuntu/linux-starfive<6.2.0-1005.6
6.2.0-1005.6
ubuntu/linux-starfive<6.5~
6.5~
ubuntu/linux-starfive-5.19<6.5~
6.5~
ubuntu/linux-xilinx-zynqmp<5.4.0-1030.34
5.4.0-1030.34
ubuntu/linux-xilinx-zynqmp<6.5~
6.5~
ubuntu/linux-xilinx-zynqmp<5.15.0-1025.29
5.15.0-1025.29
ubuntu/linux-aws<4.15.0-1164.177
4.15.0-1164.177
ubuntu/linux-aws<5.4.0-1110.119
5.4.0-1110.119
ubuntu/linux-aws<4.4.0-1127.133
4.4.0-1127.133
ubuntu/linux-aws<4.4.0-1164.179
4.4.0-1164.179
ubuntu/linux-aws<6.2.0-1012.12
6.2.0-1012.12
ubuntu/linux-aws<5.15.0-1045.50
5.15.0-1045.50
ubuntu/linux-aws<6.5~
6.5~
ubuntu/linux-aws-6.2<6.2.0-1012.12~22.04.1
6.2.0-1012.12~22.04.1
ubuntu/linux-aws-6.2<6.5~
6.5~
ubuntu/linux-hwe-6.2<6.5~
6.5~
ubuntu/linux-hwe-6.2<6.2.0-33.33~22.04.1
6.2.0-33.33~22.04.1
ubuntu/linux-lowlatency-hwe-6.2<6.5~
6.5~
ubuntu/linux-lowlatency-hwe-6.2<6.2.0-1013.13~22.04.1
6.2.0-1013.13~22.04.1
ubuntu/linux-ibm-5.15<5.15.0-1038.41~20.04.1
5.15.0-1038.41~20.04.1
ubuntu/linux-ibm-5.15<6.5~
6.5~
ubuntu/linux-gcp-6.2<6.2.0-1014.14~22.04.1
6.2.0-1014.14~22.04.1
ubuntu/linux-azure-6.2<6.2.0-1012.12~22.04.1
6.2.0-1012.12~22.04.1
ubuntu/linux-azure-6.2<6.5~
6.5~
ubuntu/linux-azure-fde-6.2<6.2.0-1012.12~22.04.1
6.2.0-1012.12~22.04.1
ubuntu/linux-azure-fde-6.2<6.5~
6.5~
ubuntu/linux-nvidia-6.2<6.5~
6.5~
ubuntu/linux-nvidia-6.2<6.2.0-1011.11
6.2.0-1011.11
ubuntu/linux-starfive-6.2<6.5~
6.5~
ubuntu/linux-laptop<6.5~
6.5~
ubuntu/linux-oem-6.5<6.5~
6.5~
Microsoft Windows Server 2016
fix available externally
Microsoft Windows Server 2016
fix available externally
debian/linux<=4.19.249-2<=4.19.304-1
5.10.197-1
5.10.205-2
6.1.66-1
6.1.69-1
6.6.13-1
6.6.15-2
debian/linux-5.10
5.10.205-2~deb10u1
debian/xen<=4.11.4+107-gef32c7afa2-1<=4.14.6-1<=4.14.5+94-ge49571868d-1
4.17.2+76-ge1f9cb16e2-1~deb12u1
4.17.2+76-ge1f9cb16e2-1
4.17.3+10-g091466ba55-1

Remedy

https://git.kernel.org/linus/1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Remedy

https://git.kernel.org/linus/77245f1c3c6495521f6a3af082696ee2f8ce3921

Remedy

https://git.kernel.org/linus/f58d6fbcb7c848b7f2469be339bc571f2e9d245b

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203