« List of all CVEs

CVE-2018-5407

Published: 11/15/2018 Last updated: 8/5/2024 Reserved: 1/12/2018

Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.

CNA assigner: certcc (37e5125f-f79b-445b-8fad-9564f167944b) Requested by: n/a

Opam packages affected (7)

conf-libcurl conf-libssl conf-mingw-w64-openssl-i686 conf-mingw-w64-openssl-x86_64 conf-npm conf-openssl conf-srt-openssl

Products affected (1)

Product Vendor Version
Processors supporting Simultaneous Multi-Threading N/A < 417591a766b3c040c346044541ff949c0b2bb7b2

References (56)