PT-2022-2953 · Amd+9 · Amd Cpus+9

Alyssa Milburn

+6

·

Published

2022-02-28

·

Updated

2023-04-12

·

CVE-2021-26401

CVSS v3.1

5.6

Medium

VectorAV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions AMD CPUs (affected versions not specified)
Description The issue is related to the LFENCE/JMP module in AMD CPUs, specifically concerning the branch prediction mechanism. This allows an attacker to access protected memory from a program without the necessary privileges by exploiting indirect branch prediction.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

ALSA-2022:1988
ALT-PU-2022-1662
BDU:2022-03555
CESA-2022_1975
CESA-2022_1988
CESA-2023_0399
CVE-2021-26401
OPENSUSE-SU-2022:0940-1
OPENSUSE-SU-2022_0940-1
RHSA-2022:1975
RHSA-2022:1988
RHSA-2022_1975
RHSA-2022_1988
RHSA-2023:0187
RHSA-2023:0399
RHSA-2023:0400
RHSA-2023_0187
RHSA-2023_0399
RHSA-2023_0400
RLSA-2022:1975
RLSA-2022:1988
ROSA-SA-2023-2097
SUSE-SU-2022:0931-1
SUSE-SU-2022:0939-1
SUSE-SU-2022:0940-1
SUSE-SU-2022:1285-1
SUSE-SU-2022:1300-1
SUSE-SU-2022:1359-1
SUSE-SU-2022:1375-1
SUSE-SU-2022:1408-1
SUSE-SU-2022_0931-1
SUSE-SU-2022_0939-1
SUSE-SU-2022_0940-1
SUSE-SU-2022_1285-1
SUSE-SU-2022_1300-1
SUSE-SU-2022_1359-1
SUSE-SU-2022_1408-1
USN-5415-1
USN-5417-1
USN-5418-1
USN-6001-1
USN-6013-1
USN-6014-1

Affected Products

Alt Linux
Amd Cpus
Almalinux
Astra Linux
Centos
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu