CVE-2021-46758

Insufficient validation of SPI flash addresses in the ASP AMD Secure Processor bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity...

CVE-2023-20592

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine VM memory integrity...

CVE-2023-20592

CVE-2023-20592 covers AMD CPUs where improper behavior of the INVD instruction could let a malicious hypervisor affect cache line write-back and potentially compromise guest VM memory integrity. Public documents in the connected set describe the issue across multiple IBM Power HMC/LINUX-firmware ...

CVE-2023-20592

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine VM memory integrity...

CVE-2023-20566

Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity...

CVE-2023-20566

Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity...

CVE-2023-20566

CVE-2023-20566: Improper address validation in ASP with SNP enabled may potentially compromise guest memory integrity. In SUSE advisories SUSE-SU-2023:4665-1 and SUSE-SU-2023:4664-1, kernel-firmware updates mitigate this alongside other SNP/SMU-related issues by updating AMD ucode to 20231030 and...

CVE-2022-23830

SMM configuration may not be immutable, as intended, when SNP is enabled resulting in a potential limited loss of guest memory integrity...

CVE-2022-23830

CVE-2022-23830 affects AMD SNP/SMM scenarios where SMM configuration may not be immutable as intended, potentially causing a limited loss of guest memory integrity. The connected advisories (AMD security bulletins and SUSE kernel-firmware updates) indicate mitigation through firmware updates (PI ...

AMD EPYC Security Vulnerability

AMD EPYC is a line of x86 architecture server microprocessors from AMD, known in Chinese as "Xiao Long", utilizing the Zen microarchitecture. A security vulnerability in AMD EPYC, which stems from incorrect address validation in SNP-enabled ASPs, could allow an attacker to compromise client memor...

CVE-2023-20592

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine VM memory integrity...

PT-2023-7412 · Amd +7 · Amd Cpus +7

Name of the Vulnerable Software and Affected Versions: AMD CPUs affected versions not specified Description: The issue concerns improper or unexpected behavior of the INVD instruction in some AMD CPUs, potentially allowing an attacker with a malicious hypervisor to affect cache line write-back...

AMD CPU 安全漏洞

AMD CPUs are a family of CPUs from AMD. The AMD CPUs suffer from an improper instruction vulnerability that stems from the fact that incorrect or unexpected behavior of the INVD instruction would allow an attacker with a malicious hypervisor to affect the cache line write-back behavior of the CPU...

PT-2023-12740 · Suse · Suse

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a potential limited loss of guest memory integrity due to SMM configuration not being immutable as intended when SNP is enabled...

AMD INVD Instruction Security Notice

Bulletin ID: AMD-SB-3005 Potential Impact: Memory integrity Severity: Medium Summary External researchers reported a potential vulnerability with the INVD instruction that may lead to a loss of SEV-ES and SEV-SNP guest virtual machine VM memory integrity. CVE Details Refer to Glossary for...

Memory Integrity System Readiness Scan Tool Defense in Depth Update

The Memory Integrity System Readiness Scan Tool hvciscanamd64.exe and hvciscanarm64.exe is used to check for compatibility issues with memory integrity, also known as hypervisor-protected code integrity HVCI. The original version was published without a RSRC section, which contains resource...

The vulnerability of the vmw_user_bo_lookup() function in the drivers/gpu/drm/vmwgfx/vmwgfx_bo.c file of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the vmwuserbolookup function in the drivers/gpu/drm/vmwgfx/vmwgfxbo.c file of the Linux kernel is related to the repeated release of previously released memory due to competitive access to resources race condition. Exploiting this vulnerability could allow an attacker to...

CVE-2021-46759

Improper syscall input validation in AMD TEE Trusted Execution Environment may allow an attacker with physical access and control of a Uapp that runs under the bootloader to reveal the contents of the ASP AMD Secure Processor bootloader accessible memory to a serial port, resulting in a potential...

CVE-2022-23818

Insufficient input validation on the model specific register: VMHSAVEPA may potentially lead to loss of SEV-SNP guest memory integrity...

CVE-2022-23818

Insufficient input validation on the model specific register: VMHSAVEPA may potentially lead to loss of SEV-SNP guest memory integrity...