CVE-2022-29277

Name of the Vulnerable Software and Affected Versions FwBlockServiceSmm driver versions prior to 05.21.51.0048 FwBlockServiceSmm driver versions prior to 05.42.23.0066 FwBlockServiceSmm driver versions prior to 05.42.11.0021 FwBlockServiceSmm driver versions prior to 05.44.25.0052 FwBlockServiceSmm driver versions prior to 05.10.12.0042 FwBlockServiceSmm driver versions prior to 05.05.15.0038 FwBlockServiceSmm driver versions prior to 05.27.26.0023 FwBlockServiceSmm driver versions prior to 05.21.51.0026 FwBlockServiceSmm driver versions prior to 05.44.27.0030 FwBlockServiceSmm driver versions prior to 05.43.12.0052 FwBlockServiceSmm driver versions prior to 05.44.23.0047 FwBlockServiceSmm driver versions prior to 05.44.30.0018 FwBlockServiceSmm driver versions prior to 05.36.10.0017 FwBlockServiceSmm driver versions prior to 05.52.25.0006 FwBlockServiceSmm driver versions prior to 05.32.50.0018 FwBlockServiceSmm driver versions prior to 05.44.30.0005 FwBlockServiceSmm driver versions prior to 05.44.30.0007 FwBlockServiceSmm driver versions prior to 05.44.30.0004 FwBlockServiceSmm driver versions prior to 05.36.26.0016 FwBlockServiceSmm driver versions prior to 05.44.26.0007

Description The issue is related to incorrect pointer checks within the FwBlockServiceSmm driver, allowing arbitrary RAM modifications. Certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses.

Recommendations As a temporary workaround, consider disabling the SpiAccessLib instances until a patch is available. Restrict access to the FwBlockServiceSmm driver to minimize the risk of exploitation. Update to the fixed version for each respective platform, as specified in the affected versions list. For INTEL Purley-R, update to version 05.21.51.0048. For Whitley, update to version 05.42.23.0066. For Cedar Island, update to version 05.42.11.0021. For Eagle Stream, update to version 05.44.25.0052. For Denverton, update to version 05.10.12.0042. For Graneville DE, update to version 05.05.15.0038. For Grangeville DE NS, update to version 05.27.26.0023. For Bakerville, update to version 05.21.51.0026. For Idaville, update to version 05.44.27.0030. For Tiger Lake H/UP3, update to version 05.43.12.0052. For Alder Lake, update to version 05.44.23.0047. For Elkhart Lake, update to version 05.44.30.0018. For AMD ROME, update to version 05.36.10.0017. For MILAN, update to version 05.36.10.0017. For GENOA, update to version 05.52.25.0006. For R1000, update to version 05.32.50.0018. For R2000, update to version 05.44.30.0005. For V3000, update to version 05.44.30.0007. For Ryzen 5000, update to version 05.44.30.0004. For Hygon #1/#2, update to version 05.36.26.0016. For Hygon #3, update to version 05.44.26.0007.