IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Epyc_8024pn_firmware | Amd | * | genoapi_1.0.0.b (excluding) |
| Red Hat Enterprise Linux 8 | RedHat | linux-firmware-0:20240827-124.git3cff7109.el8_10 | * |
| Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support | RedHat | linux-firmware-0:20240827-114.3.git3cff7109.el8_6 | * |
| Red Hat Enterprise Linux 8.6 Telecommunications Update Service | RedHat | linux-firmware-0:20240827-114.3.git3cff7109.el8_6 | * |
| Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions | RedHat | linux-firmware-0:20240827-114.3.git3cff7109.el8_6 | * |
| Red Hat Enterprise Linux 9 | RedHat | linux-firmware-0:20240905-143.3.el9_4 | * |
| Red Hat Enterprise Linux 9.2 Extended Update Support | RedHat | linux-firmware-0:20240905-138.3.el9_2 | * |
| Amd64-microcode | Ubuntu | noble | * |
| Amd64-microcode | Ubuntu | oracular | * |
| Amd64-microcode | Ubuntu | trusty/esm | * |
| Amd64-microcode | Ubuntu | upstream | * |