CVE-2022-23824
MEDIUMXen - Information Disclosure via IBPB Branch Prediction
Title source: llmDescription
IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information disclosure.
References (6)
Core 6
Core References
Mailing List, Mitigation, Patch, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2022/11/10/2
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NTQMPJC5N6XJYQ232OZFLK47HVZNRBY3/
Mitigation, Vendor Advisory
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1040
Third Party Advisory vendor-advisory
https://www.debian.org/security/2023/dsa-5378
Third Party Advisory
https://security.gentoo.org/glsa/202402-07
Scores
CVSS v3
5.5
EPSS
0.0004
EPSS Percentile
12.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (50)
amd/a10-9600p_firmware
amd/a10-9630p_firmware
amd/a12-9700p_firmware
amd/a12-9730p_firmware
amd/a4-9120_firmware
amd/a6-9210_firmware
amd/a6-9220_firmware
amd/a6-9220c_firmware
amd/a9-9410_firmware
amd/a9-9420_firmware
... and 40 more
Published
Nov 09, 2022
Tracked Since
Feb 18, 2026