CVE-2022-29901

🗓️ 12 Jul 2022 16:00:00Reported by ubuntu.comType

Intel microprocessor generations 6 to 8 vulnerable to new Spectre variant bypassing retpoline mitigation to leak data

Reporter	Title	Published	Views	Family All 471
ATTACKERKB	CVE-2022-29901	12 Jul 202219:15	–	attackerkb
Tenable Nessus	Amazon Linux 2022 : bpftool, kernel, kernel-devel (ALAS2022-2022-125)	6 Sep 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2022 : bpftool, kernel, kernel-devel (ALAS2022-2022-185)	5 Nov 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-070)	21 Mar 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2-2022-1838 (ALAS-2022-1838)	15 Sep 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-019)	23 Aug 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.10-2025-086)	27 Mar 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-006)	23 Aug 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.15-2025-068)	19 Mar 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-037)	25 Oct 202200:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	16.04	any	linux-aws-hwe	4.15.0-1151.164~16.04.1	linux-aws-hwe_4.15.0-1151.164~16.04.1_any.deb
Ubuntu	20.04	any	linux-iot	5.4.0-1006.8	linux-iot_5.4.0-1006.8_any.deb
Ubuntu	16.04	any	linux-oracle	4.15.0-1115.126~16.04.1	linux-oracle_4.15.0-1115.126~16.04.1_any.deb
Ubuntu	18.04	any	linux-oracle	4.15.0-1114.125	linux-oracle_4.15.0-1114.125_any.deb
Ubuntu	20.04	any	linux-oracle	5.4.0-1087.96	linux-oracle_5.4.0-1087.96_any.deb
Ubuntu	22.04	any	linux-oracle	5.15.0-1016.20	linux-oracle_5.15.0-1016.20_any.deb
Ubuntu	20.04	any	linux-riscv-5.15	5.15.0-1017.19~20.04.1	linux-riscv-5.15_5.15.0-1017.19~20.04.1_any.deb
Ubuntu	14.04	any	linux-aws	4.4.0-1120.126	linux-aws_4.4.0-1120.126_any.deb
Ubuntu	16.04	any	linux-aws	4.4.0-1158.173	linux-aws_4.4.0-1158.173_any.deb
Ubuntu	18.04	any	linux-aws	4.15.0-1150.163	linux-aws_4.15.0-1150.163_any.deb

Source	Link
intel	www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00702.html
intel	www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/return-stack-buffer-underflow.html
community	www.community.intel.com/t5/Blogs/Products-and-Solutions/Security/Chips-Salsa-Episode-21-July-2022-Security-Advisories-Retbleed/post/1399055
intel	www.intel.com/content/www/us/en/developer/topic-technology/software-security-guidance/processors-affected-consolidated-product-cpu-model.html
wiki	www.wiki.ubuntu.com/SecurityTeam/KnowledgeBase/Retbleed
xenbits	www.xenbits.xen.org/xsa/advisory-407.html
ubuntu	www.ubuntu.com/security/notices/USN-5564-1
ubuntu	www.ubuntu.com/security/notices/USN-5565-1
ubuntu	www.ubuntu.com/security/notices/USN-5566-1
ubuntu	www.ubuntu.com/security/notices/USN-5728-1

23 May 2026 00:12Current

7.4High risk

Vulners AI Score7.4

CVSS 21.9

CVSS 3.15.6 - 6.5

EPSS0.04947