CVE-2022-0002 : Spectre intra-mode BTI
Versions Affected : All versions prior to TrueNAS SCALE 22.02.0.1.
Non-transparent sharing of branch predictor within a context in some Intel® Processors may allow an authorized user to potentially enable information disclosure via local access.
Base score 4.7.
No workarounds available
- Intel recommends that affected Intel® Processors disable access to managed runtimes in privileged modes to help prevent managed runtimes from being used as disclosure gadgets, such as unprivileged Extended Berkeley packet filter (eBPF) in kernel mode.