CVE-2020-12965

Name of the Vulnerable Software and Affected Versions AMD CPUs (affected versions not specified) Existing AMD CPUs vulnerable to the issue AMD CPUs based on Zen+ and Zen 2 microarchitectures

Description The issue is related to speculative execution of read and write operations, accessing memory using non-canonical addresses. This can potentially result in data leakage. The vulnerability may allow an attacker to disclose information about the kernel's address space using a side-channel attack. The issue is similar to the Meltdown vulnerability. Researchers have demonstrated the effectiveness of the attack, and it is estimated to impact various CPUs, including existing AMD CPUs and future Intel and Arm CPUs.

Recommendations For existing AMD CPUs, consider disabling speculative execution as a temporary workaround until a patch is available. For AMD CPUs based on Zen+ and Zen 2 microarchitectures, restrict access to sensitive areas of memory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.