CVE-2020-10767

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.8-rc1

Description A flaw in the Linux kernel's implementation of the Enhanced IBPB allows a local attacker to perform a Spectre V2 style attack, potentially leading to confidentiality breaches. The issue is related to the interaction between STIBP and IBRS, where the IBPB mitigation is disabled under certain conditions. This could enable an attacker to gain unauthorized access to protected information. The vulnerability can be exploited without additional execution privileges or user interaction.

Recommendations For Linux kernel versions prior to 5.8-rc1, consider disabling the spectre v2 user select mitigation function in bugs.c as a temporary workaround to minimize the risk of exploitation. Restrict access to sensitive information and ensure proper input validation to reduce the impact of a potential attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.