%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27m15.839%205.293-1.447-2.8a.136.136%200%200%200-.051-.055.144.144%200%200%200-.074-.02h-5.8a.143.143%200%200%200-.091.03.13.13%200%200%200-.034.17.138.138%200%200%200%20.072.06l7.251%202.8a.144.144%200%200%200%20.17-.054.13.13%200%200%200%20.007-.13l-.003-.001ZM11.839%204.945.073.223A.073.073%200%200%200%20.026.221a.07.07%200%200%200-.038.027.065.065%200%200%200%20.007.086l7.962%208.182a.069.069%200%200%200%20.049.022.072.072%200%200%200%20.047-.019l3.805-3.461a.066.066%200%200%200%20.02-.061.065.065%200%200%200-.014-.03.07.07%200%200%200-.028-.02l.003-.002ZM5.382%207.183a.071.071%200%200%200-.062-.022.07.07%200%200%200-.03.011.067.067%200%200%200-.023.025l-4.13%207.696a.065.065%200%200%200-.005.046.068.068%200%200%200%20.027.038.072.072%200%200%200%20.09-.006L7.13%209.18a.066.066%200%200%200%200-.087l-1.75-1.91Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27M1.936%202.592c.668%200%201.21-.515%201.21-1.151S2.604.29%201.936.29C1.267.29.726.805.726%201.44c0%20.637.541%201.152%201.21%201.152ZM14.56.576H3.404a1.587%201.587%200%200%201%20.024%201.69l-.026.04h11.156a.56.56%200%200%200%20.386-.15.518.518%200%200%200%20.16-.369v-.692a.502.502%200%200%200-.16-.369.543.543%200%200%200-.386-.15ZM1.936%206.701c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%204.685H3.404a1.612%201.612%200%200%201%20.242%201.083c-.03.215-.105.421-.219.608l-.026.04h11.157a.56.56%200%200%200%20.386-.15.518.518%200%200%200%20.16-.37v-.692a.5.5%200%200%200-.16-.369.542.542%200%200%200-.386-.15ZM1.936%2010.81c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%208.795H3.404a1.611%201.611%200%200%201%20.243%201.082%201.581%201.581%200%200%201-.245.648h11.156a.559.559%200%200%200%20.386-.15.517.517%200%200%200%20.16-.37v-.692a.502.502%200%200%200-.16-.368.543.543%200%200%200-.386-.15ZM1.936%2014.92c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%2012.904H3.404a1.611%201.611%200%200%201%20.242%201.082%201.58%201.58%200%200%201-.219.608l-.026.04h11.157a.562.562%200%200%200%20.386-.15.517.517%200%200%200%20.16-.37v-.692a.5.5%200%200%200-.16-.369.543.543%200%200%200-.386-.15Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27M9.618.272c-.634%200-1.243.243-1.691.674-.448.43-.7%201.015-.701%201.624v4.221a1.9%201.9%200%200%201%201.362%200v-4.22a.955.955%200%200%201%20.291-.72%201.067%201.067%200%200%201%201.479%200%20.955.955%200%200%201%20.29.719v.962h1.363V2.57c0-.61-.253-1.194-.702-1.625A2.445%202.445%200%200%200%209.618.272ZM9.017%208.433c0%20.21-.065.417-.187.593a1.102%201.102%200%200%201-.499.393c-.203.08-.426.102-.642.06a1.125%201.125%200%200%201-.568-.292%201.055%201.055%200%200%201-.304-.547%201.028%201.028%200%200%201%20.064-.616c.084-.195.226-.362.41-.479a1.143%201.143%200%200%201%201.401.133c.103.1.185.217.24.347.057.129.085.268.085.408ZM2.773%205.855c-.634.001-1.242.244-1.69.674C.633%206.96.381%207.545.38%208.154v4.082a1.901%201.901%200%200%201%201.363%200V8.154a.955.955%200%200%201%20.29-.719%201.067%201.067%200%200%201%201.479%200%20.955.955%200%200%201%20.29.719v.962h1.363v-.962c0-.61-.253-1.194-.702-1.625a2.444%202.444%200%200%200-1.69-.674ZM2.166%2013.878c0%20.21-.065.415-.186.59-.121.174-.294.31-.496.39-.202.08-.424.102-.638.06a1.119%201.119%200%200%201-.565-.29%201.049%201.049%200%200%201-.302-.543c-.043-.206-.02-.42.063-.614.084-.194.225-.36.407-.476a1.136%201.136%200%200%201%201.394.133%201.024%201.024%200%200%201%20.323.75Z%27%2F%3E%3Cpath%20d%3D%27M14.752%204.76a1.789%201.789%200%200%201-.681-.126v2.411a.972.972%200%200%201-.312.682c-.193.179-.45.28-.718.28-.268%200-.526-.101-.718-.28a.972.972%200%200%201-.312-.682V4.32h-1.363v2.726c0%20.61.252%201.195.7%201.626a2.443%202.443%200%200%200%201.692.673c.635%200%201.244-.242%201.692-.673.449-.431.7-1.016.7-1.626v-2.41a1.9%201.9%200%200%201-.68.125ZM15.858%202.822c.037.225%200%20.455-.107.658a1.1%201.1%200%200%201-.49.472%201.161%201.161%200%200%201-1.302-.198%201.04%201.04%200%200%201-.206-1.251%201.1%201.1%200%200%201%20.492-.47%201.161%201.161%200%200%201%201.299.199c.166.16.276.366.314.59ZM7.907%2010.2c-.233%200-.465-.042-.681-.126V12.6a.97.97%200%200%201-.302.7%201.05%201.05%200%200%201-.728.29%201.05%201.05%200%200%201-.728-.29.97.97%200%200%201-.302-.7V9.845H3.804V12.6c0%20.61.252%201.194.7%201.625a2.443%202.443%200%200%200%201.692.674c.634%200%201.243-.243%201.692-.674.448-.43.7-1.015.7-1.625v-2.526a1.887%201.887%200%200%201-.68.127Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
Search CVE reports
1 – 10 of 10 results
Incomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting in a loss of data integrity.
1 affected package
amd64-microcode
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP,...
1 affected package
amd64-microcode
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 6 of 7
Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.
1 affected package
amd64-microcode
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | Fixed | Fixed | Fixed | Fixed |
Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine...
1 affected package
amd64-microcode
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | — | Not affected | Not affected | Not affected |
Some fixes available 52 of 101
A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information...
136 affected packages
amd64-microcode, linux, linux-allwinner, linux-allwinner-5.19, linux-aws...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | Fixed | Fixed | Fixed | Fixed |
| linux | Not affected | Fixed | Vulnerable | Vulnerable |
| linux-allwinner | Not in release | Not in release | Not in release | Not in release |
| linux-allwinner-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws | Not affected | Fixed | Vulnerable | Vulnerable |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-aws-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-aws-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-aws-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-fips | Not in release | Not in release | Not in release | Not in release |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Fixed | Vulnerable | Ignored |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Vulnerable |
| linux-azure-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-azure-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-azure-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-azure-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Ignored |
| linux-azure-fde | Not in release | Fixed | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-azure-fde-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-fde-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-azure-fips | Not in release | Not in release | Not in release | Not in release |
| linux-bluefield | Not in release | Not in release | Vulnerable | Not in release |
| linux-dell300x | Not in release | Not in release | Not in release | Ignored |
| linux-fips | Not in release | Not in release | Not in release | Not in release |
| linux-gcp | Not affected | Fixed | Vulnerable | Ignored |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Vulnerable |
| linux-gcp-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-gcp-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-gcp-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-gcp-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-fips | Not in release | Not in release | Not in release | Not in release |
| linux-gke | Not affected | Fixed | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.15 | Not in release | Not in release | Ignored | Not in release |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gkeop | Not affected | Fixed | Ignored | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-hwe | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-hwe-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-ibm | Not affected | Fixed | Vulnerable | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-intel-iotg | Not in release | Fixed | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release |
| linux-iot | Not in release | Not in release | Vulnerable | Not in release |
| linux-kvm | Not in release | Fixed | Vulnerable | Vulnerable |
| linux-laptop | Not in release | Not in release | Not in release | Not in release |
| linux-lowlatency | Not affected | Fixed | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia | Not affected | Fixed | Not in release | Not in release |
| linux-nvidia-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Ignored |
| linux-oem-5.10 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.14 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.17 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-5.6 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-6.0 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.1 | Not in release | Fixed | Not in release | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle | Not affected | Fixed | Vulnerable | Vulnerable |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-oracle-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-raspi | Not affected | Fixed | Vulnerable | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Ignored |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release |
| linux-realtime | Not in release | Ignored | Not in release | Not in release |
| linux-riscv | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-riscv-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-riscv-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Ignored |
| linux-starfive | Not in release | Not in release | Not in release | Not in release |
| linux-starfive-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-starfive-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Fixed | Vulnerable | Not in release |
Some fixes available 88 of 115
An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.
137 affected packages
amd64-microcode, linux, linux-allwinner, linux-allwinner-5.19, linux-aws...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | Fixed | Fixed | Fixed | Fixed |
| linux | Not affected | Fixed | Fixed | Fixed |
| linux-allwinner | Not in release | Not in release | Not in release | Not in release |
| linux-allwinner-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws | Not affected | Fixed | Fixed | Fixed |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-aws-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-aws-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-aws-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-fips | Not in release | Not in release | Not in release | Not in release |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Fixed | Fixed | Ignored |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Fixed |
| linux-azure-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-azure-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Vulnerable |
| linux-azure-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-azure-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Ignored |
| linux-azure-fde | Not in release | Fixed | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-azure-fde-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-fde-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-azure-fips | Not in release | Not in release | Not in release | Not in release |
| linux-bluefield | Not in release | Not in release | Fixed | Not in release |
| linux-dell300x | Not in release | Not in release | Not in release | Ignored |
| linux-fips | Not in release | Not in release | Not in release | Not in release |
| linux-firmware | Not affected | Not affected | Not affected | Not affected |
| linux-gcp | Not affected | Fixed | Fixed | Ignored |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Fixed |
| linux-gcp-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-gcp-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-gcp-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-gcp-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-fips | Not in release | Not in release | Not in release | Not in release |
| linux-gke | Not affected | Fixed | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.15 | Not in release | Not in release | Ignored | Not in release |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gkeop | Not affected | Fixed | Fixed | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-hwe | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-hwe-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-ibm | Not affected | Fixed | Fixed | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-intel-iotg | Not in release | Fixed | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release |
| linux-iot | Not in release | Not in release | Fixed | Not in release |
| linux-kvm | Not in release | Fixed | Fixed | Fixed |
| linux-laptop | Not in release | Not in release | Not in release | Not in release |
| linux-lowlatency | Not affected | Fixed | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release | Fixed | Not in release | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia | Not affected | Fixed | Not in release | Not in release |
| linux-nvidia-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Ignored |
| linux-oem-5.10 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.14 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.17 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-5.6 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-6.0 | Not in release | Fixed | Not in release | Not in release |
| linux-oem-6.1 | Not in release | Fixed | Not in release | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle | Not affected | Fixed | Fixed | Fixed |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-oracle-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-raspi | Not affected | Fixed | Fixed | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Ignored |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release |
| linux-realtime | Not in release | Ignored | Not in release | Not in release |
| linux-riscv | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-riscv-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-riscv-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Ignored |
| linux-starfive | Not in release | Not in release | Not in release | Not in release |
| linux-starfive-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-starfive-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Fixed | Fixed | Not in release |
A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure.
1 affected package
amd64-microcode
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | — | Not affected | Not affected | Not affected |
A timing and power-based side channel attack leveraging the x86 PREFETCH instructions on some AMD CPUs could potentially result in leaked kernel address space information.
1 affected package
amd64-microcode
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Some fixes available 45 of 56
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
87 affected packages
amd64-microcode, firefox, intel-microcode, libvirt, linux...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | Not affected | Not affected | Not affected | Fixed |
| firefox | Not affected | Not affected | Not affected | Fixed |
| intel-microcode | Not affected | Not affected | Not affected | Not affected |
| libvirt | Not affected | Not affected | Not affected | Not affected |
| linux | Not affected | Not affected | Not affected | Not affected |
| linux-aws | Not affected | Not affected | Not affected | Not affected |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-fips | Not in release | Not in release | Not in release | Not in release |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Not affected | Not affected | Not affected |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Not affected |
| linux-azure-fde | Not in release | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fips | Not in release | Not in release | Not in release | Not in release |
| linux-bluefield | Not in release | Not in release | Not affected | Not in release |
| linux-euclid | — | — | — | Not in release |
| linux-fips | Not in release | Not in release | Not in release | Not in release |
| linux-flo | — | — | — | Not in release |
| linux-gcp | Not affected | Not affected | Not affected | Not affected |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-fips | Not in release | Not in release | Not in release | Not in release |
| linux-gke | Not affected | Not affected | Ignored | Not in release |
| linux-gkeop | Not affected | Not affected | Not affected | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-goldfish | — | — | — | Not in release |
| linux-grouper | — | — | — | Not in release |
| linux-hwe | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Not affected |
| linux-ibm | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release |
| linux-iot | Not in release | Not in release | Not affected | Not in release |
| linux-kvm | Not in release | Not affected | Not affected | Not affected |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lts-quantal | — | — | — | Not in release |
| linux-lts-raring | — | — | — | Not in release |
| linux-lts-saucy | — | — | — | Not in release |
| linux-lts-trusty | — | — | — | Not in release |
| linux-lts-utopic | — | — | — | Not in release |
| linux-lts-vivid | — | — | — | Not in release |
| linux-lts-wily | — | — | — | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-maguro | — | — | — | Not in release |
| linux-mako | — | — | — | Not in release |
| linux-manta | — | — | — | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Not affected |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-oracle | Not affected | Not affected | Not affected | Not affected |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-raspi | Not affected | Not affected | Not affected | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Not affected |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release |
| linux-realtime | Not in release | Ignored | Not in release | Not in release |
| linux-riscv | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Not affected |
| linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release |
| qemu | Not affected | Not affected | Not affected | Fixed |
| qemu-kvm | — | — | — | Not in release |
| webkit2gtk | Not affected | Not affected | Not affected | Not affected |
The AMD Ryzen processor with AGESA microcode through 2017-01-27 allows local users to cause a denial of service (system hang) via an application that makes a long series of FMA3 instructions, as demonstrated by the Flops test suite.
1 affected package
amd64-microcode
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| amd64-microcode | — | — | — | — |