---

ASA-202011-10 - log back

ASA-202011-10 edited at 10 Nov 2020 23:05:31

Workaround

- CVE-2020-8694 - A temporary measure would be to remove the ability for non-root users to read the current RAPL energy reporting metrics. + A temporary measure would be to remove the ability for non-root users + to read the current RAPL energy reporting metrics. This can be done with the command: # sudo chmod 400 /sys/class/powercap/intel_rapl/*/energy_uj - This mitigation will only work on the current boot and will need to be reapplied at each system boot to remain in effect. + This mitigation will only work on the current boot and will need to be + reapplied at each system boot to remain in effect.

ASA-202011-10 edited at 10 Nov 2020 22:43:13
Workaround	- CVE-2020-8694 A temporary measure would be to remove the ability for non-root users to read the current RAPL energy reporting metrics. This can be done with the command: - # sudo chmod 400 /sys/class/powercap/intel_rapl/*/energy_uj + # sudo chmod 400 /sys/class/powercap/intel_rapl/*/energy_uj This mitigation will only work on the current boot and will need to be reapplied at each system boot to remain in effect.
Impact	- A local attacker might be able to exhaust the memory available on the system, causing a denial of service, or access sensitive information via power data. + A local attacker might be able to exhaust the memory available on the system, causing a denial of service, or access sensitive information by observing the power usage.

ASA-202011-10 edited at 10 Nov 2020 22:41:52
Workaround	+ - CVE-2020-8694 + + A temporary measure would be to remove the ability for non-root users to read the current RAPL energy reporting metrics. + This can be done with the command: + + # sudo chmod 400 /sys/class/powercap/intel_rapl/*/energy_uj + + This mitigation will only work on the current boot and will need to be reapplied at each system boot to remain in effect.

ASA-202011-10 edited at 10 Nov 2020 22:28:18
Impact	- A local attacker might be able to exhaust the memory available on the system, causing a denial of service. + A local attacker might be able to exhaust the memory available on the system, causing a denial of service, or access sensitive information via power data.

ASA-202011-10 edited at 10 Nov 2020 22:27:29

ASA-202011-10 edited at 10 Nov 2020 21:32:13
Impact	+ A local attacker might be able to exhaust the memory available on the system, causing a denial of service.

ASA-202011-10 created at 10 Nov 2020 21:31:56

ASA-202011-10 deleted at 10 Nov 2020 21:15:57
Workaround
Impact	- A remote attacker might be able to execute arbitrary code on the affected host.

ASA-202011-10 edited at 10 Nov 2020 17:18:43
Impact	+ A remote attacker might be able to execute arbitrary code on the affected host.

ASA-202011-10 created at 10 Nov 2020 17:18:07