CVE-2021-26342

Published: May 11, 2022

Modified: Sep 16, 2024

PUBLISHED

Description

In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a particular sequence of operations that includes creation of a new virtual machine control block (VMCB). The failure to flush the TLB may cause the microcode to use stale TLB translations which may allow for disclosure of SEV guest memory contents. Users of SEV-ES/SEV-SNP guest VMs are not impacted by this vulnerability.

Vendor	Product	Versions
AMD	EPYC™ Processors	affected `various`

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1028

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-26342

Description

Affected Products

References