CVE-2017-13218 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2017-13218 Interim 1 18 2023-02-13T01:57:24Z current 2021-05-30T14:01:10Z 2023-02-13T01:57:24Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2017-13218 Access to CNTVCT_EL0 in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear could be used for side channel attacks and this could lead to local information disclosure with no additional execution privileges needed in FSM9055, IPQ4019, IPQ8064, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MSM8909W, QCA4531, QCA9980, QCN5502, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP3 LTSS SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Server 11 SP4 LTSS SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for SAP Applications 12 kernel-default kernel-default-base kernel-default-devel kernel-default-man kernel-devel kernel-macros kernel-source kernel-default as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata kernel-source as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata kernel-default as a component of SUSE Linux Enterprise Server 11 SP3 LTSS kernel-source as a component of SUSE Linux Enterprise Server 11 SP3 LTSS kernel-default as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata kernel-source as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata kernel-default as a component of SUSE Linux Enterprise Server 11 SP4 LTSS kernel-source as a component of SUSE Linux Enterprise Server 11 SP4 LTSS kernel-default as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-base as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-devel as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-man as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-source as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default as a component of SUSE Linux Enterprise Server 12 kernel-default-base as a component of SUSE Linux Enterprise Server 12 kernel-default-devel as a component of SUSE Linux Enterprise Server 12 kernel-default-man as a component of SUSE Linux Enterprise Server 12 kernel-devel as a component of SUSE Linux Enterprise Server 12 kernel-macros as a component of SUSE Linux Enterprise Server 12 kernel-source as a component of SUSE Linux Enterprise Server 12 kernel-default as a component of SUSE Linux Enterprise Server 12-LTSS kernel-default-base as a component of SUSE Linux Enterprise Server 12-LTSS kernel-default-devel as a component of SUSE Linux Enterprise Server 12-LTSS kernel-default-man as a component of SUSE Linux Enterprise Server 12-LTSS kernel-devel as a component of SUSE Linux Enterprise Server 12-LTSS kernel-macros as a component of SUSE Linux Enterprise Server 12-LTSS kernel-source as a component of SUSE Linux Enterprise Server 12-LTSS kernel-default as a component of SUSE Linux Enterprise Server for SAP Applications 12 kernel-source as a component of SUSE Linux Enterprise Server for SAP Applications 12 Access to CNTVCT_EL0 in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear could be used for side channel attacks and this could lead to local information disclosure with no additional execution privileges needed in FSM9055, IPQ4019, IPQ8064, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MSM8909W, QCA4531, QCA9980, QCN5502, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845. CVE-2017-13218 SUSE Linux Enterprise Server 11 SP1 for Teradata:kernel-default SUSE Linux Enterprise Server 11 SP1 for Teradata:kernel-source SUSE Linux Enterprise Server 11 SP3 LTSS:kernel-default SUSE Linux Enterprise Server 11 SP3 LTSS:kernel-source SUSE Linux Enterprise Server 11 SP3 for Teradata:kernel-default SUSE Linux Enterprise Server 11 SP3 for Teradata:kernel-source SUSE Linux Enterprise Server 11 SP4 LTSS:kernel-default SUSE Linux Enterprise Server 11 SP4 LTSS:kernel-source SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source SUSE Linux Enterprise Server 12-LTSS:kernel-default SUSE Linux Enterprise Server 12-LTSS:kernel-default-base SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel SUSE Linux Enterprise Server 12-LTSS:kernel-default-man SUSE Linux Enterprise Server 12-LTSS:kernel-devel SUSE Linux Enterprise Server 12-LTSS:kernel-macros SUSE Linux Enterprise Server 12-LTSS:kernel-source SUSE Linux Enterprise Server 12:kernel-default SUSE Linux Enterprise Server 12:kernel-default-base SUSE Linux Enterprise Server 12:kernel-default-devel SUSE Linux Enterprise Server 12:kernel-default-man SUSE Linux Enterprise Server 12:kernel-devel SUSE Linux Enterprise Server 12:kernel-macros SUSE Linux Enterprise Server 12:kernel-source SUSE Linux Enterprise Server for SAP Applications 12:kernel-default SUSE Linux Enterprise Server for SAP Applications 12:kernel-source moderate 4.7 AV:L/AC:M/Au:N/C:C/I:N/A:N 2.5 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N