CVE-2013-6885

CVSS v2.0

4.7

Medium

Vector

AV:L/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions AMD processors versions 16h 00h through 0Fh

Description The issue arises from the microcode's improper handling of the interaction between locked instructions and write-combined memory types. This allows local users to cause a denial of service, resulting in a system hang, by utilizing a crafted application.

Recommendations For AMD processors versions 16h 00h through 0Fh, consider applying a microcode update to resolve the issue, as the current microcode does not properly handle the interaction between locked instructions and write-combined memory types. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2013-6885

DLA-155-1

DSA-3128-1

MGASA-2014-0228

MGASA-2014-0229

MGASA-2014-0235

MGASA-2014-0236

MGASA-2014-0237

MGASA-2014-0238

MGASA-2015-0075

MGASA-2015-0076

MGASA-2015-0077

MGASA-2015-0078

OPENSUSE-SU-2014_0677-1

OPENSUSE-SU-2014_0678-1

RHSA-2014:0285

RHSA-2014_0285

SUSE-RU-2015:0621-1

SUSE-SU-2015:0481-1

SUSE-SU-2015:0581-1

SUSE-SU-2015:0652-1

SUSE-SU-2015:0736-1

SUSE-SU-2015:1174-1

SUSE-SU-2015:1376-1

Affected Products

Amd Processors

Red Hat

Suse

CVE-2013-6885

Weakness Enumeration

Related Identifiers

Affected Products

References · 227