Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "5.14.0-1013.13", "binary_name": "linux-buildinfo-5.14.0-1013-oem" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-headers-5.14.0-1013-oem" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-image-unsigned-5.14.0-1013-oem" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-image-unsigned-5.14.0-1013-oem-dbgsym" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-modules-5.14.0-1013-oem" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-oem-5.14-headers-5.14.0-1013" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-oem-5.14-tools-5.14.0-1013" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-oem-5.14-tools-host" }, { "binary_version": "5.14.0-1013.13", "binary_name": "linux-tools-5.14.0-1013-oem" } ] }