CVE-2006-1056
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-1056
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys. NOTE: this is the documented behavior of AMD64 processors, but it is inconsistent with Intel processors in a security-relevant fashion that was not addressed by the kernels.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多家厂商AMD CPU本地FPU信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AMD是全球领先的微处理器解决方案供应商,提供各种微处理器解决方案。 在AMD所生产的第7代和第8代处理器上,除非将x87状态字中的异常摘要(ES)位设置为1,否则fxsave和fxrstor指令不会保存FOP、FIP和FDP寄存器指示出现了无掩码x87异常。 这种行为与AMD提供的文档所述是一致的,但与其他厂商的处理器不一致。其他厂商的处理器无论ES位设置为何值都会保存FOP、FIP和FDP寄存器。由于这种差异,在环境切换时无法恢复FOP、FIP和FDP寄存器的内容。 在受影响的处理器上,本地攻击者可以
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-1056
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-1056
请登录查看更多情报信息。
Vendor Advisories for CVE-2006-1056 (39)
- http://www.vmware.com/download/esx/esx-254-200610-patch.htmlx_refsource_CONFIRM
- http://kb.vmware.com/kb/2533126x_refsource_CONFIRM
- http://www.vmware.com/download/esx/esx-213-200610-patch.htmlx_refsource_CONFIRM
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187911x_refsource_CONFIRM
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187910x_refsource_CONFIRM
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9995vdb-entrysignaturex_refsource_OVAL
Mailing List Discussions for CVE-2006-1056 (2)
- http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.htmlvendor-advisoryx_refsource_SUSE
Other References for CVE-2006-1056 (9)
- http://security.freebsd.org/advisories/FreeBSD-SA-06:14-amd.txtx_refsource_MISC
- http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9x_refsource_CONFIRM
- http://support.avaya.com/elmodocs2/security/ASA-2006-180.htmx_refsource_CONFIRM
- http://support.avaya.com/elmodocs2/security/ASA-2006-200.htmx_refsource_CONFIRM
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:14.fpu.ascvendor-advisoryx_refsource_FREEBSD
Same Patch Batch · n/a · 2006-04-20 · 78 CVEs total
| CVE-2006-1873 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1874 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1888 | PHPGraphy Index.PHP 未授权访问漏洞 | |
| CVE-2006-1876 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1877 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1875 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1872 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1871 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1870 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1869 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1878 | phpFaber TopSites Index.PHP 跨站脚本攻击漏洞 | |
| CVE-2006-1879 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1880 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1881 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1882 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1883 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1884 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1885 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1886 | Oracle 2006年4月更新修复多个安全漏洞 | |
| CVE-2006-1887 | Oracle 2006年4月更新修复多个安全漏洞 |
Showing top 20 of 78 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2006-1056
No comments yet