CVE-2025-29943
Publication date 16 January 2026
Last updated 26 June 2026
Ubuntu priority
Description
Write what were condition within AMD CPUs may allow an admin-privileged attacker to modify the configuration of the CPU pipeline potentially resulting in the corruption of the stack pointer inside an SEV-SNP guest.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| amd64-microcode | 26.04 LTS resolute |
Fixed 3.20251202.1ubuntu1
|
| 25.10 questing |
Fixed 3.20251202.1ubuntu0.25.10.1
|
|
| 24.04 LTS noble |
Fixed 3.20251202.1ubuntu0.24.04.1
|
|
| 22.04 LTS jammy |
Vulnerable
|
|
| 20.04 LTS focal |
Vulnerable
|
|
| 18.04 LTS bionic |
Vulnerable
|
|
| 16.04 LTS xenial |
Vulnerable
|
|
| 14.04 LTS trusty | Ignored no real-world users |
Notes
rodrigo-zaiden
This is not planned to be fixed for the amd64-microcode package in Ubuntu 14.04 as that release was already outside of the LTS timeframe when this hardware platform was launched. AMD released ucode patches for: Milan: 0x0A0011DE / Milan-X: 0x0A001247 Genoa: 0x0A101156 / Genoa-X: 0x0A101251 / Bergamo/Siena: 0x0AA0021B Turin Classic: 0x0B002151 / Turin Dense: 0x0B10104E These patches are included in upstream Version: 2025-07-29 (commit 3768c184): Microcode patches in microcode_amd_fam19h.bin: Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011de Length=5568 bytes Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001247 Length=5568 bytes Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101158 Length=5568 bytes Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101253 Length=5568 bytes Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa0021c Length=5568 bytes Microcode patches in microcode_amd_fam1ah.bin: Family=0x1a Model=0x02 Stepping=0x01: Patch=0x0b002151 Length=14368 bytes Family=0x1a Model=0x11 Stepping=0x00: Patch=0x0b10104e Length=14368 bytes
Severity score breakdown
CVSS version: CVSS v4.0
Base score
4.6 · Medium
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N