Add CVE-2018-3620 and CVE-2018-3646

This commit is contained in:
pe3zx 2018-09-23 17:53:15 +07:00
parent 6626016ed6
commit 4222889cee

View File

@ -1469,6 +1469,13 @@ _return-to-libc techniques_
</ul>
</td>
</tr>
<tr>
<td>CVE-2018-3620, CVE-2018-3646</td>
<td>Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis</td>
<ul>
<li><a href="https://github.com/gregvish/l1tf-poc/">gregvish/l1tf-poc</a></li>
</ul>
</tr>
<tr>
<td>CVE-2018-4878</td>
<td>A critical vulnerability (CVE-2018-4878) exists in Adobe Flash Player 28.0.0.137 and earlier versions. Successful exploitation could potentially allow an attacker to take control of the affected system.