7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
12.6%
A flaw was found in the Linux kernel’s implementation of Pressure Stall
Information. While the feature is disabled by default, it could allow an
attacker to crash the system or have other memory-corruption side effects.
Author | Note |
---|---|
sbeattie | on s390x/focal and newer, CONFIG_PSI_DEFAULT_DISABLED is set (see LP: #1876044), so requires a boot command line argument; other arches have it enabled. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | linux | < 5.4.0-109.123 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < 5.4.0-1072.77 | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws-5.4 | < 5.4.0-1072.77~18.04.1 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure | < 5.4.0-1077.80 | UNKNOWN |
ubuntu | 18.04 | noarch | linux-azure-5.4 | < 5.4.0-1077.80~18.04.1 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure-fde | < 5.4.0-1077.80 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-bluefield | < 5.4.0-1035.38 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-gcp | < 5.4.0-1072.77 | UNKNOWN |
ubuntu | 18.04 | noarch | linux-gcp-5.4 | < 5.4.0-1072.77~18.04.1 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-gke | < 5.4.0-1068.71 | UNKNOWN |