DescriptionLoad value injection in some Intel(R) Processors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. The list of affected products is provided in intel-sa-00334:
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

No mitigation will provided by this issue in software, primarily impacts Intel SGX
binutils/toolchain updates will include a patch that optionally emits lfence
instructions in problematic situations (but have performance impact), cf.

Search for package or bug name: Reporting problems