Your submission was sent successfully! Close

CVE-2022-21151

Published: 12 May 2022

Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

From the Ubuntu security team

Alysa Milburn, Jason Brandt, Avishai Redelman and Nir Lavi discovered that some Intel processors improperly optimised security-critical code. A local attacker could possibly use this to expose sensitive information.

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
intel-microcode
Launchpad, Ubuntu, Debian
bionic
Released (3.20220510.0ubuntu0.18.04.1)
focal
Released (3.20220510.0ubuntu0.20.04.1)
impish
Released (3.20220510.0ubuntu0.21.10.1)
jammy
Released (3.20220510.0ubuntu0.22.04.1)
trusty Needs triage

upstream
Released (3.20220510.1)
xenial Needs triage