ALPINE-CVE-2023-38575

See a problem?
Please try reporting it to the source first.
Source
https://security.alpinelinux.org/vuln/CVE-2023-38575
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json
JSON Data
https://api.test.osv.dev/v1/vulns/ALPINE-CVE-2023-38575
Upstream
Published
2024-03-14T17:15:51.527Z
Modified
2025-12-03T22:47:19.329941Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

References

Affected packages

Alpine:v3.17

intel-ucode

Package

Name
intel-ucode
Purl
pkg:apk/alpine/intel-ucode?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20240813-r0

Affected versions

Other

20130222-r0
20170511-r0
20180108-r0
20180312-r0
20180807a-r0
20180807a-r1
20180807a-r2
20190514a-r0
20190618-r0
20190918-r0
20191112-r0
20191113-r0
20191115-r0
20200508-r0
20200520-r0
20200609-r0
20200616-r0
20201110-r0
20201112-r0
20210216-r0
20210608-r0
20220207-r0
20220419-r0
20220510-r0
20220809-r0
20230214-r0
20230512-r0
20230516a-r0
20230613-r0
20230808-r0
20231114-r0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json"

Alpine:v3.18

intel-ucode

Package

Name
intel-ucode
Purl
pkg:apk/alpine/intel-ucode?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20240813-r0

Affected versions

Other

20130222-r0
20170511-r0
20180108-r0
20180312-r0
20180807a-r0
20180807a-r1
20180807a-r2
20190514a-r0
20190618-r0
20190918-r0
20191112-r0
20191113-r0
20191115-r0
20200508-r0
20200520-r0
20200609-r0
20200616-r0
20201110-r0
20201112-r0
20210216-r0
20210608-r0
20220207-r0
20220419-r0
20220510-r0
20220809-r0
20221108-r0
20230214-r0
20230512-r0
20230516a-r0
20230613-r0
20230808-r0
20231114-r0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json"

Alpine:v3.19

intel-ucode

Package

Name
intel-ucode
Purl
pkg:apk/alpine/intel-ucode?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20240312-r0

Affected versions

Other

20130222-r0
20170511-r0
20180108-r0
20180312-r0
20180807a-r0
20180807a-r1
20180807a-r2
20190514a-r0
20190618-r0
20190918-r0
20191112-r0
20191113-r0
20191115-r0
20200508-r0
20200520-r0
20200609-r0
20200616-r0
20201110-r0
20201112-r0
20210216-r0
20210608-r0
20220207-r0
20220419-r0
20220510-r0
20220809-r0
20221108-r0
20230214-r0
20230512-r0
20230516a-r0
20230613-r0
20230808-r0
20231114-r0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json"

Alpine:v3.20

intel-ucode

Package

Name
intel-ucode
Purl
pkg:apk/alpine/intel-ucode?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20240312-r0

Affected versions

Other

20130222-r0
20170511-r0
20180108-r0
20180312-r0
20180807a-r0
20180807a-r1
20180807a-r2
20190514a-r0
20190618-r0
20190918-r0
20191112-r0
20191113-r0
20191115-r0
20200508-r0
20200520-r0
20200609-r0
20200616-r0
20201110-r0
20201112-r0
20210216-r0
20210608-r0
20220207-r0
20220419-r0
20220510-r0
20220809-r0
20221108-r0
20230214-r0
20230512-r0
20230516a-r0
20230613-r0
20230808-r0
20231114-r0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json"

Alpine:v3.21

intel-ucode

Package

Name
intel-ucode
Purl
pkg:apk/alpine/intel-ucode?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20240312-r0

Affected versions

Other

20130222-r0
20170511-r0
20180108-r0
20180312-r0
20180807a-r0
20180807a-r1
20180807a-r2
20190514a-r0
20190618-r0
20190918-r0
20191112-r0
20191113-r0
20191115-r0
20200508-r0
20200520-r0
20200609-r0
20200616-r0
20201110-r0
20201112-r0
20210216-r0
20210608-r0
20220207-r0
20220419-r0
20220510-r0
20220809-r0
20221108-r0
20230214-r0
20230512-r0
20230516a-r0
20230613-r0
20230808-r0
20231114-r0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json"

Alpine:v3.22

intel-ucode

Package

Name
intel-ucode
Purl
pkg:apk/alpine/intel-ucode?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20240312-r0

Affected versions

Other

20130222-r0
20170511-r0
20180108-r0
20180312-r0
20180807a-r0
20180807a-r1
20180807a-r2
20190514a-r0
20190618-r0
20190918-r0
20191112-r0
20191113-r0
20191115-r0
20200508-r0
20200520-r0
20200609-r0
20200616-r0
20201110-r0
20201112-r0
20210216-r0
20210608-r0
20220207-r0
20220419-r0
20220510-r0
20220809-r0
20221108-r0
20230214-r0
20230512-r0
20230516a-r0
20230613-r0
20230808-r0
20231114-r0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json"

Alpine:v3.23

intel-ucode

Package

Name
intel-ucode
Purl
pkg:apk/alpine/intel-ucode?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20240312-r0

Affected versions

Other

20130222-r0
20170511-r0
20180108-r0
20180312-r0
20180807a-r0
20180807a-r1
20180807a-r2
20190514a-r0
20190618-r0
20190918-r0
20191112-r0
20191113-r0
20191115-r0
20200508-r0
20200520-r0
20200609-r0
20200616-r0
20201110-r0
20201112-r0
20210216-r0
20210608-r0
20220207-r0
20220419-r0
20220510-r0
20220809-r0
20221108-r0
20230214-r0
20230512-r0
20230516a-r0
20230613-r0
20230808-r0
20231114-r0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2023-38575.json"