DescriptionArm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line speculation."
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Hardware issue, mitigations to intrusive to backport (and would require to recompile
the entire distro, which is not warranted for the impact)
GCC patches:;a=commit;h=a9ba2a9b77bec7eacaf066801f22d1c366a2bc86;a=commit;h=be178ecd5ac1fe1510d960ff95c66d0ff831afe1;a=commit;h=96b7f495f9269d5448822e4fc28882edb35a58d7

Search for package or bug name: Reporting problems