USN-5485-2

Details

It was discovered that some Intel processors did not completely perform cleanup actions on multi-core shared buffers. A local attacker could possibly use this to expose sensitive information. (CVE-2022-21123)

It was discovered that some Intel processors did not completely perform cleanup actions on microarchitectural fill buffers. A local attacker could possibly use this to expose sensitive information. (CVE-2022-21125)

It was discovered that some Intel processors did not properly perform cleanup during specific special register write operations. A local attacker could possibly use this to expose sensitive information. (CVE-2022-21166)

Affected Packages

linux-oem-5.14

Ubuntu 20.04 LTS

Fixed in:

5.14.0-1044.49

References

REPORT

https://ubuntu.com/security/CVE-2022-21123

REPORT

https://ubuntu.com/security/CVE-2022-21125

REPORT

https://ubuntu.com/security/CVE-2022-21166

ADVISORY

https://ubuntu.com/security/notices/USN-5485-2