CVE-2006-1056: CVE-2006-1056

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-1056

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys. NOTE: this is the documented behavior of AMD64 processors, but it is inconsistent with Intel processors in a security-relevant fashion that was not addressed by the kernels.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

多家厂商AMD CPU本地FPU信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AMD是全球领先的微处理器解决方案供应商，提供各种微处理器解决方案。在AMD所生产的第7代和第8代处理器上，除非将x87状态字中的异常摘要(ES)位设置为1，否则fxsave和fxrstor指令不会保存FOP、FIP和FDP寄存器指示出现了无掩码x87异常。这种行为与AMD提供的文档所述是一致的，但与其他厂商的处理器不一致。其他厂商的处理器无论ES位设置为何值都会保存FOP、FIP和FDP寄存器。由于这种差异，在环境切换时无法恢复FOP、FIP和FDP寄存器的内容。在受影响的处理器上，本地攻击者可以

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-1056

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-1056

Please Login to view more intelligence information

http://www.vmware.com/download/esx/esx-254-200610-patch.htmlx_refsource_CONFIRM
http://security.freebsd.org/advisories/FreeBSD-SA-06:14-amd.txtx_refsource_MISC
http://kb.vmware.com/kb/2533126x_refsource_CONFIRM
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-180.htmx_refsource_CONFIRM
http://www.vmware.com/download/esx/esx-213-200610-patch.htmlx_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-200.htmx_refsource_CONFIRM
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187911x_refsource_CONFIRM
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187910x_refsource_CONFIRM
http://secunia.com/advisories/21035third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21465third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19715third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19724third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20914third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22875third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19735third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/24746vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/21136third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21983third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20671third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/24807vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/17600vdb-entryx_refsource_BID
http://secunia.com/advisories/22417third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22876third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20716third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20398third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1015966vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2006/dsa-1103vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2006/dsa-1097vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/usn-302-1vendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2006/4353vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/4502vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/2554vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/1426vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/1475vdb-entryx_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2006-0575.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2006-0437.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2006-0579.htmlvendor-advisoryx_refsource_REDHAT
http://lwn.net/Alerts/180820/vendor-advisoryx_refsource_FEDORA
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:14.fpu.ascvendor-advisoryx_refsource_FREEBSD
http://www.novell.com/linux/security/advisories/2006-05-31.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.htmlvendor-advisoryx_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9995vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/25871vdb-entryx_refsource_XF
http://marc.info/?l=linux-kernel&m=114548768214478&w=2mailing-listx_refsource_MLIST
http://www.securityfocus.com/archive/1/431341mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/451404/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/451419/100/200/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/451417/100/200/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/451421/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-1056

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2006-1056

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2006-1056

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-1056

III. Intelligence Information for CVE-2006-1056

New Vulnerabilities

V. Comments for CVE-2006-1056

Leave a comment