CVE-2025-29934
Publication date 21 November 2025
Last updated 26 June 2026
Ubuntu priority
Description
A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss of data integrity.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| amd64-microcode | 26.04 LTS resolute |
Fixed 3.20251202.1ubuntu1
|
| 25.10 questing |
Fixed 3.20251202.1ubuntu0.25.10.1
|
|
| 24.04 LTS noble |
Fixed 3.20251202.1ubuntu0.24.04.1
|
|
| 22.04 LTS jammy |
Vulnerable
|
|
| 20.04 LTS focal |
Vulnerable
|
|
| 18.04 LTS bionic |
Vulnerable
|
|
| 16.04 LTS xenial |
Vulnerable
|
|
| 14.04 LTS trusty | Ignored no real-world users |
Notes
rodrigo-zaiden
This is not planned to be fixed for the amd64-microcode package in Ubuntu 14.04 as that release was already outside of the LTS timeframe when this hardware platform was launched. AMD released ucode patches for: Milan: 0x0A0011DB / Milan-X: 0x0A001244 Siena: 0x0AA00219 / Genoa: 0x0A101154 / Genoa-X: 0x0A10124F / Bergamo: 0x0AA00219 Turin Classic: 0x0B00211E / Turin Dense: 0x0B101028 These patches are included in upstream Version: 2025-07-29 (commit 3768c184): Microcode patches in microcode_amd_fam19h.bin: Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011de Length=5568 bytes Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001247 Length=5568 bytes Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101158 Length=5568 bytes Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101253 Length=5568 bytes Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa0021c Length=5568 bytes Microcode patches in microcode_amd_fam1ah.bin: Family=0x1a Model=0x02 Stepping=0x01: Patch=0x0b002151 Length=14368 bytes Family=0x1a Model=0x11 Stepping=0x00: Patch=0x0b10104e Length=14368 bytes
Severity score breakdown
CVSS version: CVSS v3.0
Base score
5.3 · Medium
Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N