PT-2022-3603 · Intel+11 · Intel Microprocessors+11

Johannes Wikner

+1

·

Published

2022-06-27

·

Updated

2025-09-23

·

CVE-2022-29900

CVSS v3.1

6.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Intel and AMD microprocessors (affected versions not specified) AMD microprocessor families 15h through 18h
Description The issue is related to mis-trained branch predictions for return instructions, which may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions. This can lead to the disclosure of protected information from kernel memory or enable an attack on the host system from virtual machines. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution.
Recommendations For Intel and AMD microprocessors, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For AMD microprocessor families 15h through 18h, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-212CWE-200

Related Identifiers

ALSA-2022:7110
ALSA-2022:7134
ALSA-2022:7933
ALSA-2022:8267
ALT-PU-2022-2363
BDU:2022-04387
CESA-2022_7110
CESA-2022_7134
CVE-2022-29900
DLA-3102-1
DSA-5184-1
DSA-5207-1
MGASA-2022-0278
MGASA-2022-0279
OPENSUSE-SU-2022:2549-1
OPENSUSE-SU-2022_2376-1
OPENSUSE-SU-2022_2411-1
OPENSUSE-SU-2022_2422-1
OPENSUSE-SU-2022_2520-1
OPENSUSE-SU-2022_2549-1
OPENSUSE-SU-2022_2597-1
OPENSUSE-SU-2022_2599-1
OPENSUSE-SU-2022_2615-1
OPENSUSE-SU-2022_4616-1
OPENSUSE-SU-2024:12193-1
OPENSUSE-SU-2024:13704-1
OPENSUSE-SU-2025_1263-1
RHSA-2022:7110
RHSA-2022:7134
RHSA-2022:7337
RHSA-2022:7338
RHSA-2022:7933
RHSA-2022:8267
RHSA-2022:8973
RHSA-2022:8974
RHSA-2022_7110
RHSA-2022_7134
RHSA-2022_7337
RHSA-2022_7338
RHSA-2022_7933
RHSA-2022_8267
RLSA-2022:7110
RLSA-2022:7134
SUSE-SU-2022:2376-1
SUSE-SU-2022:2377-1
SUSE-SU-2022:2379-1
SUSE-SU-2022:2382-1
SUSE-SU-2022:2393-1
SUSE-SU-2022:2407-1
SUSE-SU-2022:2411-1
SUSE-SU-2022:2424-1
SUSE-SU-2022:2424-2
SUSE-SU-2022:2478-1
SUSE-SU-2022:2520-1
SUSE-SU-2022:2549-1
SUSE-SU-2022:2557-1
SUSE-SU-2022:2560-1
SUSE-SU-2022:2569-1
SUSE-SU-2022:2574-1
SUSE-SU-2022:2591-1
SUSE-SU-2022:2597-1
SUSE-SU-2022:2599-1
SUSE-SU-2022:2599-2
SUSE-SU-2022:2600-1
SUSE-SU-2022:2601-1
SUSE-SU-2022:2615-1
SUSE-SU-2022:2629-1
SUSE-SU-2022:2809-1
SUSE-SU-2022:4616-1
SUSE-SU-2023:0416-1
SUSE-SU-2025:03310-1
SUSE-SU-2025:1027-1
SUSE-SU-2025:1176-1
SUSE-SU-2025:1183-1
SUSE-SU-2025:1194-1
SUSE-SU-2025:1241-1
SUSE-SU-2025:1263-1
SUSE-SU-2025_03310-1
SUSE-SU-2025_1027-1
SUSE-SU-2025_1241-1
SUSE-SU-2025_1263-1
USN-5564-1
USN-5565-1
USN-5566-1
USN-5854-1
USN-5861-1
USN-5862-1
USN-5865-1
USN-5883-1
USN-5924-1
USN-5975-1
USN-6007-1

Affected Products

Alt Linux
Amd Microprocessors
Almalinux
Astra Linux
Centos
Intel Microprocessors
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu