CVE-2022-29277
First published: Tue Nov 15 2022(Updated: )
Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: 05.10.12.0042 Snow Ridge: Trunk Graneville DE: 05.05.15.0038 Grangeville DE NS: 05.27.26.0023 Bakerville: 05.21.51.0026 Idaville: 05.44.27.0030 Whiskey Lake: Trunk Comet Lake-S: Trunk Tiger Lake H/UP3: 05.43.12.0052 Alder Lake: 05.44.23.0047 Gemini Lake: Not Affected Apollo Lake: Not Affected Elkhart Lake: 05.44.30.0018 AMD ROME: trunk MILAN: 05.36.10.0017 GENOA: 05.52.25.0006 Snowy Owl: Trunk R1000: 05.32.50.0018 R2000: 05.44.30.0005 V2000: Trunk V3000: 05.44.30.0007 Ryzen 5000: 05.44.30.0004 Embedded ROME: Trunk Embedded MILAN: Trunk Hygon Hygon #1/#2: 05.36.26.0016 Hygon #3: 05.44.26.0007 https://www.insyde.com/security-pledge/SA-2022060
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Amd Genoa Firmware | <05.52.25.0006 | |
| Amd Genoa | ||
| Amd Hygon 1 Firmware | <05.36.26.0016 | |
| Amd Hygon 1 | ||
| Amd Hygon 2 Firmware | <05.36.26.0016 | |
| Amd Hygon 2 | ||
| Amd Hygon 3 Firmware | <05.44.26.0007 | |
| Amd Hygon 3 | ||
| Amd Milan Firmware | <05.36.10.0017 | |
| Amd Milan | ||
| Amd Milan Firmware | <05.36.26.0016 | |
| Amd Milan | ||
| Amd Rome Firmware | <05.36.10.0017 | |
| AMD ROME | ||
| Amd Rome Firmware | <05.36.26.0016 | |
| AMD ROME | ||
| Amd Ryzen 5300g Firmware | <05.44.30.0004 | |
| Amd Ryzen 5300g | ||
| Amd Ryzen 5300ge Firmware | <05.44.30.0004 | |
| Amd Ryzen 5300ge | ||
| Amd Ryzen 5600g Firmware | <05.44.30.0004 | |
| Amd Ryzen 5600g | ||
| Amd Ryzen 5600ge Firmware | <05.44.30.0004 | |
| Amd Ryzen 5600ge | ||
| Amd Ryzen 5600x Firmware | <05.44.30.0004 | |
| Amd Ryzen 5600x | ||
| Amd Ryzen 5700g Firmware | <05.44.30.0004 | |
| Amd Ryzen 5700g | ||
| Amd Ryzen 5700ge Firmware | <05.44.30.0004 | |
| Amd Ryzen 5700ge | ||
| Amd Ryzen 5800x Firmware | <05.44.30.0004 | |
| Amd Ryzen 5800x | ||
| Amd Ryzen 5800x3d Firmware | <05.44.30.0004 | |
| Amd Ryzen 5800x3d | ||
| Amd Ryzen 5900x Firmware | <05.44.30.0004 | |
| Amd Ryzen 5900x | ||
| Amd Ryzen 5950x Firmware | <05.44.30.0004 | |
| Amd Ryzen 5950x | ||
| Amd Snowy Owl R1000 Firmware | <05.32.50.0018 | |
| Amd Snowy Owl R1000 | ||
| Amd Snowy Owl R2000 Firmware | <05.44.30.0005 | |
| Amd Snowy Owl R2000 | ||
| Amd Snowy Owl V2000 Firmware | <05.44.30.0007 | |
| Amd Snowy Owl V2000 | ||
| Amd Snowy Owl V3000 Firmware | <05.44.30.0007 | |
| Amd Snowy Owl V3000 | ||
| Intel Alder Lake Firmware | <05.44.23.0047 | |
| Intel Alder Lake | ||
| Intel Bakerville Firmware | <05.21.51.0026 | |
| Intel Bakerville | ||
| Intel Cedar Island Firmware | <05.42.11.0021 | |
| Intel Cedar Island | ||
| Intel Idaville Firmware | <05.43.12.0052 | |
| Intel Idaville | ||
| Intel Comet Lake-s Firmware | <05.43.12.0052 | |
| Intel Comet Lake-s | ||
| Intel Tiger Lake H\/up3 Firmware | <05.43.12.0052 | |
| Intel Tiger Lake H\/up3 | ||
| Intel Whiskey Lake Firmware | <05.43.12.0052 | |
| Intel Whiskey Lake | ||
| Intel Denverton Firmware | <05.10.12.0042 | |
| Intel Denverton | ||
| Intel Eagle Stream Firmware | <05.44.25.0052 | |
| Intel Eagle Stream | ||
| Intel Grangeville De Ns Firmware | <05.27.26.0023 | |
| Intel Grangeville De Ns | ||
| Intel Granville De Firmware | <05.05.15.0038 | |
| Intel Granville De | ||
| Intel Greenlow Firmware | <05.10.12.0042 | |
| Intel Greenlow | ||
| Intel Greenlow-r Firmware | <05.10.12.0042 | |
| Intel Greenlow-r | ||
| Intel Mehlow Firmware | <05.10.12.0042 | |
| Intel Mehlow | ||
| Intel Mehlow-r Firmware | <05.10.12.0042 | |
| Intel Mehlow-r | ||
| Intel Tatlow Firmware | <05.10.12.0042 | |
| Intel Tatlow | ||
| Intel Purley-r Firmware | <05.21.51.0048 | |
| INTEL Purley-R | ||
| Intel Whitley Firmware | <05.42.23.0066 | |
| Intel Whitley |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/amd
- canonical/amd genoa firmware
- canonical/amd genoa
- canonical/amd hygon 1 firmware
- canonical/amd hygon 1
- canonical/amd hygon 2 firmware
- canonical/amd hygon 2
- canonical/amd hygon 3 firmware
- canonical/amd hygon 3
- canonical/amd milan firmware
- canonical/amd milan
- canonical/amd rome firmware
- canonical/amd rome
- canonical/amd ryzen 5300g firmware
- canonical/amd ryzen 5300g
- canonical/amd ryzen 5300ge firmware
- canonical/amd ryzen 5300ge
- canonical/amd ryzen 5600g firmware
- canonical/amd ryzen 5600g
- canonical/amd ryzen 5600ge firmware
- canonical/amd ryzen 5600ge
- canonical/amd ryzen 5600x firmware
- canonical/amd ryzen 5600x
- canonical/amd ryzen 5700g firmware
- canonical/amd ryzen 5700g
- canonical/amd ryzen 5700ge firmware
- canonical/amd ryzen 5700ge
- canonical/amd ryzen 5800x firmware
- canonical/amd ryzen 5800x
- canonical/amd ryzen 5800x3d firmware
- canonical/amd ryzen 5800x3d
- canonical/amd ryzen 5900x firmware
- canonical/amd ryzen 5900x
- canonical/amd ryzen 5950x firmware
- canonical/amd ryzen 5950x
- canonical/amd snowy owl r1000 firmware
- canonical/amd snowy owl r1000
- canonical/amd snowy owl r2000 firmware
- canonical/amd snowy owl r2000
- canonical/amd snowy owl v2000 firmware
- canonical/amd snowy owl v2000
- canonical/amd snowy owl v3000 firmware
- canonical/amd snowy owl v3000
- vendor/intel
- canonical/intel alder lake firmware
- canonical/intel alder lake
- canonical/intel bakerville firmware
- canonical/intel bakerville
- canonical/intel cedar island firmware
- canonical/intel cedar island
- canonical/intel idaville firmware
- canonical/intel idaville
- canonical/intel comet lake-s firmware
- canonical/intel comet lake-s
- canonical/intel tiger lake h\/up3 firmware
- canonical/intel tiger lake h\/up3
- canonical/intel whiskey lake firmware
- canonical/intel whiskey lake
- canonical/intel denverton firmware
- canonical/intel denverton
- canonical/intel eagle stream firmware
- canonical/intel eagle stream
- canonical/intel grangeville de ns firmware
- canonical/intel grangeville de ns
- canonical/intel granville de firmware
- canonical/intel granville de
- canonical/intel greenlow firmware
- canonical/intel greenlow
- canonical/intel greenlow-r firmware
- canonical/intel greenlow-r
- canonical/intel mehlow firmware
- canonical/intel mehlow
- canonical/intel mehlow-r firmware
- canonical/intel mehlow-r
- canonical/intel tatlow firmware
- canonical/intel tatlow
- canonical/intel purley-r firmware
- canonical/intel purley-r
- canonical/intel whitley firmware
- canonical/intel whitley