Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2017-5703

Configuration of SPI Flash in platforms based on multiple Intel platforms allow a local attacker to alter the behavior of the SPI flash potentially leading to a Denial of Service.

Related bugs and status

CVE-2017-5703 (Candidate) is related to these bugs:

Bug #1734147: corrupted BIOS due to Intel SPI bug in kernel

		In	Importance	Status
1734147	corrupted BIOS due to Intel SPI bug in kernel	linux (Ubuntu)	Critical	Fix Released
1734147	corrupted BIOS due to Intel SPI bug in kernel	linux (Ubuntu Artful)	Critical	Fix Released
1734147	corrupted BIOS due to Intel SPI bug in kernel	linux-hwe-edge (Ubuntu Xenial)	Critical	Fix Released
1734147	corrupted BIOS due to Intel SPI bug in kernel	linux-oem (Ubuntu Xenial)	Critical	Fix Released
1734147	corrupted BIOS due to Intel SPI bug in kernel	Linux	Medium	Confirmed
1734147	corrupted BIOS due to Intel SPI bug in kernel	Boot-Repair	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://security-cente...
SECTRACK: 1040626
CONFIRM: https://support.hpe.co...
CONFIRM: https://security.netap...