UBUNTU-CVE-2024-56161
- Source
- https://ubuntu.com/security/CVE-2024-56161
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-56161.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-56161
- Related
- Published
- 2025-02-03T18:15:00Z
- Modified
- 2025-02-06T16:37:00Z
- Summary
- [none]
- Details
-
Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious CPU microcode resulting in loss of confidentiality and integrity of a confidential guest running under AMD SEV-SNP.
- References
Affected packages
Ubuntu:Pro:14.04:LTS / amd64-microcode
Package
- Name
- amd64-microcode
- Purl
- pkg:deb/ubuntu/amd64-microcode@3.20180524.1~ubuntu0.14.04.2+really20130710.1ubuntu1?arch=source&distro=esm-infra-legacy/trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:16.04:LTS / amd64-microcode
Package
- Name
- amd64-microcode
- Purl
- pkg:deb/ubuntu/amd64-microcode@3.20191021.1+really3.20180524.1~ubuntu0.16.04.2+esm3?arch=source&distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.20141028.1
2.20160316.1
3.*
3.20180524.1~ubuntu0.16.04.1
3.20180524.1~ubuntu0.16.04.2
3.20191021.1ubuntu0.16.04.1
3.20191021.1+really3.20180524.1~ubuntu0.16.04.2
3.20191021.1+really3.20180524.1~ubuntu0.16.04.2+esm1
3.20191021.1+really3.20180524.1~ubuntu0.16.04.2+esm2
3.20191021.1+really3.20180524.1~ubuntu0.16.04.2+esm3
Ubuntu:Pro:18.04:LTS / amd64-microcode
Package
- Name
- amd64-microcode
- Purl
- pkg:deb/ubuntu/amd64-microcode@3.20191021.1+really3.20181128.1~ubuntu0.18.04.1+esm3?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
3.*
3.20160316.3
3.20171205.1
3.20180524.1~ubuntu0.18.04.1
3.20180524.1~ubuntu0.18.04.2
3.20191021.1ubuntu0.18.04.2
3.20191021.1+really3.20181128.1~ubuntu0.18.04.1
3.20191021.1+really3.20181128.1~ubuntu0.18.04.1+esm1
3.20191021.1+really3.20181128.1~ubuntu0.18.04.1+esm2
3.20191021.1+really3.20181128.1~ubuntu0.18.04.1+esm3
Ubuntu:20.04:LTS / amd64-microcode
Package
- Name
- amd64-microcode
- Purl
- pkg:deb/ubuntu/amd64-microcode@3.20191218.1ubuntu1.3?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:22.04:LTS / amd64-microcode
Package
- Name
- amd64-microcode
- Purl
- pkg:deb/ubuntu/amd64-microcode@3.20191218.1ubuntu2.3?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:24.10 / amd64-microcode
Package
- Name
- amd64-microcode
- Purl
- pkg:deb/ubuntu/amd64-microcode@3.20240116.2+nmu1ubuntu1.1?arch=source&distro=oracular
Ubuntu:24.04:LTS / amd64-microcode
Package
- Name
- amd64-microcode
- Purl
- pkg:deb/ubuntu/amd64-microcode@3.20231019.1ubuntu2.1?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected