CVE-2023-34320

Cortex-A77 cores (r0p0 and r1p0) are affected by erratum 1508412 where software, under certain circumstances, could deadlock a core due to the execution of either a load to device or non-cacheable memory, and either a store exclusive or register read of the Physical Address Register (PAR_EL1) in close proximity.

Published: Dec 8, 2023
Updated: Dec 14, 2023
CVE: CVE-2023-34320
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

CWE-667

Affected Software
References

Software	From	Fixed in
arm / cortex-a77_firmware	r0p0	r0p0.x
arm / cortex-a77_firmware	r1p0	r1p0.x
xen / xen	-	-

https://xenbits.xenproject.org/xsa/advisory-436.html

Vulnerability Database

289,599

CVE-2023-34320