{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2022-49611","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-02-26T02:21:30.418Z","datePublished":"2025-02-26T02:23:33.779Z","dateUpdated":"2025-12-23T13:24:45.604Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-12-23T13:24:45.604Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nx86/speculation: Fill RSB on vmexit for IBRS\n\nPrevent RSB underflow/poisoning attacks with RSB.  While at it, add a\nbunch of comments to attempt to document the current state of tribal\nknowledge about RSB attacks and what exactly is being mitigated."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["arch/x86/include/asm/cpufeatures.h","arch/x86/kernel/cpu/bugs.c","arch/x86/kvm/vmx/vmenter.S"],"versions":[{"version":"b9cdaaf0a3becc52e8b4662fef28c452c4f009b4","lessThan":"3d323b99ff5c8c57005184056d65f6af5b0479d8","status":"affected","versionType":"git"},{"version":"117cc7a908c83697b0b737d15ae1eb5943afe35b","lessThan":"f744b88dfc201bf8092833ec70b23c720188b527","status":"affected","versionType":"git"},{"version":"117cc7a908c83697b0b737d15ae1eb5943afe35b","lessThan":"17a9fc4a7b91f8599223631bb6ae6416bc0de1c0","status":"affected","versionType":"git"},{"version":"117cc7a908c83697b0b737d15ae1eb5943afe35b","lessThan":"4d7f72b6e1bc630bec7e4cd51814bc2b092bf153","status":"affected","versionType":"git"},{"version":"117cc7a908c83697b0b737d15ae1eb5943afe35b","lessThan":"8d5cff499a6d740c91ff37963907e0e983c37f0f","status":"affected","versionType":"git"},{"version":"117cc7a908c83697b0b737d15ae1eb5943afe35b","lessThan":"8c38306e2e9257af4af2819aa287a4711ff36329","status":"affected","versionType":"git"},{"version":"117cc7a908c83697b0b737d15ae1eb5943afe35b","lessThan":"9756bba28470722dacb79ffce554336dd1f6a6cd","status":"affected","versionType":"git"},{"version":"68d1f7a3f1a35639a563bbad768d5df885b4ff05","status":"affected","versionType":"git"},{"version":"20e080e2752d108388d386ecc0b33d7797dfb18f","status":"affected","versionType":"git"},{"version":"eebc3f8adee0a6f43a4789ef0bf5c5b35de8cfe4","status":"affected","versionType":"git"},{"version":"c1ddd99a029636e234a800f28790a60d6ac0318f","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["arch/x86/include/asm/cpufeatures.h","arch/x86/kernel/cpu/bugs.c","arch/x86/kvm/vmx/vmenter.S"],"versions":[{"version":"4.15","status":"affected"},{"version":"0","lessThan":"4.15","status":"unaffected","versionType":"semver"},{"version":"4.14.297","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.266","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.217","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.133","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.57","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"5.18.14","lessThanOrEqual":"5.18.*","status":"unaffected","versionType":"semver"},{"version":"5.19","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14.14","versionEndExcluding":"4.14.297"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"4.19.266"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.4.217"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.10.133"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.15.57"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.18.14"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.19"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.2.101"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16.56"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.4.113"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.9.77"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/3d323b99ff5c8c57005184056d65f6af5b0479d8"},{"url":"https://git.kernel.org/stable/c/f744b88dfc201bf8092833ec70b23c720188b527"},{"url":"https://git.kernel.org/stable/c/17a9fc4a7b91f8599223631bb6ae6416bc0de1c0"},{"url":"https://git.kernel.org/stable/c/4d7f72b6e1bc630bec7e4cd51814bc2b092bf153"},{"url":"https://git.kernel.org/stable/c/8d5cff499a6d740c91ff37963907e0e983c37f0f"},{"url":"https://git.kernel.org/stable/c/8c38306e2e9257af4af2819aa287a4711ff36329"},{"url":"https://git.kernel.org/stable/c/9756bba28470722dacb79ffce554336dd1f6a6cd"}],"title":"x86/speculation: Fill RSB on vmexit for IBRS","x_generator":{"engine":"bippy-1.2.0"}}}}