CVE-2022-27672
published 2023-03-01CVE-2022-27672: When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially…
medium4.7CVSS 3.1
AVLACHPRLUINSUCHINAN
When SMT is enabled, certain AMD processors may speculatively execute instructions using a target
from the sibling thread after an SMT mode switch potentially resulting in information disclosure.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 1st_gen_amd_epyc_processors | — | — |
| amd | 2nd_gen_amd_epyc_processors | — | — |
| amd | 2nd_gen_amd_ryzen_threadripper_processors | — | — |
| amd | 3rd_gen_amd_ryzen_threadripper_processors | — | — |
| amd | 7th_generation_amd_a-series_apus | — | — |
| amd | athlon_mobile_processors | — | — |
| amd | athlon_x4_processor | — | — |
| amd | ryzen_2000_series_processors | — | — |
| amd | ryzen_3000_series_processors | — | — |
| amd | ryzen_4000_series_processors | — | — |
| amd | ryzen_5000_series_processors | — | — |
| amd | ryzen_threadripper_pro_processor | — | — |
| debian | linux | < linux 6.1.12-1 (bookworm) | linux 6.1.12-1 (bookworm) |
| debian | xen | < linux 6.1.12-1 (bookworm) | linux 6.1.12-1 (bookworm) |
| linux | linux_kernel | >= 0 < 6.1.12-1 | 6.1.12-1 |
| linux | linux_kernel | >= 0 < 6.1.12-1 | 6.1.12-1 |
| linux | linux_kernel | >= 0 < 6.1.12-1 | 6.1.12-1 |
| linux | linux_kernel | >= 0 < 5.4.0-156.173 | 5.4.0-156.173 |
| linux | linux_kernel | >= 0 < 5.15.0-72.79 | 5.15.0-72.79 |
| linux | linux_kernel | >= 0 < 4.15.0-218.229 | 4.15.0-218.229 |
| xen | xen | >= 0 < 4.16.4-r0 | 4.16.4-r0 |
| xen | xen | >= 0 < 4.16.4-r0 | 4.16.4-r0 |
| xen | xen | >= 0 < 4.17.0-r2 | 4.17.0-r2 |
| xen | xen | >= 0 < 4.17.0-r2 | 4.17.0-r2 |
| xen | xen | >= 0 < 4.17.0-r2 | 4.17.0-r2 |
CVSS provenance
nvdv3.14.7MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
osv8.8HIGH