CVE-2023-52482: x86/srso: Add SRSO mitigation for Hygon processors

Description

In the Linux kernel, the following vulnerability has been resolved:

x86/srso: Add SRSO mitigation for Hygon processors

Add mitigation for the speculative return stack overflow vulnerability
which exists on Hygon processors too.

Classification

CVE ID: CVE-2023-52482

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.06% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/e7ea043bc3f19473561c08565047b3f1671bf35d
https://git.kernel.org/stable/c/f090a8b4d2e3ec6f318d6fdab243a2edc5a8cc37
https://git.kernel.org/stable/c/6ce2f297a7168274547d0b5aea6c7c16268b8a96
https://git.kernel.org/stable/c/cf43b304b6952b549d58feabc342807b334f03d4
https://git.kernel.org/stable/c/a5ef7d68cea1344cf524f04981c2b3f80bedbb0d

Timeline

2024-12-20 00:30:35 UTC
CVE

x86/srso: Add SRSO mitigation for Hygon processors