CVE-2005-0109

Publication date 5 March 2005

Last updated 17 July 2025

Ubuntu priority

Cvss 3 Severity Score

Description

Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
kfreebsd-5	7.04 feisty	Fixed 5.4-12
	6.10 edgy	Fixed 5.4-12
	6.06 LTS dapper	Fixed 5.4-12

Severity score breakdown

Parameter	Value
Base score	5.6 · Medium
Attack vector	Local
Attack complexity	High
Privileges required	Low
User interaction	None
Scope	Changed
Confidentiality	High
Integrity impact	None
Availability impact	None
Vector	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

References

Related Ubuntu Security Notices (USN)

USN-131-1
Linux kernel vulnerabilities
23 May 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2005-0109