Nael Abu-Ghazaleh

**Name of the Vulnerable Software and Affected Versions** NVIDIA graphics driver (affected versions not specified) **Description** The issue allows access to application data processed on the GPU through a side channel exposed by the GPU performance counters. It requires local user access and is not a network or remote attack vector. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.18.1 **Description** The issue is related to the `spectre v2 select mitigation` function in the Linux kernel, which does not always fill RSB upon a context switch. This makes it easier for attackers to conduct userspace-userspace spectreRSB attacks, potentially allowing them to access confidential data. **Recommendations** For Linux kernel versions prior to 4.18.1, update to version 4.18.1 or later to resolve the issue.