CVE-2025-48514

rodrigo-zaiden

This is not planned to be fixed for the amd64-microcode package in Ubuntu 14.04 as that release was already outside of the LTS timeframe when this hardware platform was launched affects ucode and SEV FW, the later is supported in microcode package starting from noble. AMD released ucode patches for: AMD EPYC™ 7003 Series: B1:0x0A0011DE; B2:0x0A001247 AMD EPYC™ 8004/9004 Series ("Bergamo"/"Siena"): A2:0x0AA0021B AMD EPYC™ 9004 Series ("Genoa"): B1: 0x0A101156; B2:0x0A101251 AMD EPYC™ 9005 Series: C1:0x0B002151; Dense B0: 0x0B10104E All these patches are included in upstream Version: 2025-07-29: Microcode patches in microcode_amd_fam19h.bin: Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011de Length=5568 bytes Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001247 Length=5568 bytes Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa0021c Length=5568 bytes Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101158 Length=5568 bytes Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101253 Length=5568 bytes Microcode patches in microcode_amd_fam1ah.bin: Family=0x1a Model=0x02 Stepping=0x01: Patch=0x0b002151 Length=14368 bytes Family=0x1a Model=0x11 Stepping=0x00: Patch=0x0b10104e Length=14368 bytes AMD advisory mentions SEV release in: Milan (fam 19h model 01h): SEV FW 1.37.23 (1.55.35) Genoa (fam 19h model 11h): SEV FW 1.37.31 (1.55.49) Turin (fam 1a model 02h): SEV FW 1.37.41 (1.55.65) Upstream including these versions is found in commit 13786e87: Update AMD SEV firmware to version 1.58 build 1 for AMD family 19h processors with models in the range 00h to 0fh. Update AMD SEV firmware to version 1.58 build 1 for AMD family 19h processors with models in the range 10h to 1fh. Update AMD SEV firmware to version 1.58 build 3 for AMD family 1ah processors with models in the range 00h to 0fh. AMD advertises that: "Applying mitigation CVE-2025-48514 will result in disabling SEV-ES when SEV-SNP is enabled"