CVE-2020-12965 - OpenCVE

When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Amd	Athlon 3050ge Athlon 3050ge Firmware Athlon 3150g Athlon 3150g Firmware Athlon 3150ge Athlon 3150ge Firmware Athlon Gold Pro 3150g Athlon Gold Pro 3150g Firmware Athlon Gold Pro 3150ge Athlon Gold Pro 3150ge Firmware Athlon Pro 200ge Athlon Pro 200ge Firmware Athlon Pro 300ge Athlon Pro 300ge Firmware Athlon Silver Pro 3125ge Athlon Silver Pro 3125ge Firmware Ryzen 4300g Ryzen 4300g Firmware Ryzen 4300ge Ryzen 4300ge Firmware Ryzen 4600g Ryzen 4600g Firmware Ryzen 4600ge Ryzen 4600ge Firmware Ryzen 4700g Ryzen 4700g Firmware Ryzen 4700ge Ryzen 4700ge Firmware Ryzen 5300g Ryzen 5300g Firmware Ryzen 5300ge Ryzen 5300ge Firmware Ryzen 5600g Ryzen 5600g Firmware Ryzen 5600ge Ryzen 5600ge Firmware Ryzen 5600x Ryzen 5600x Firmware Ryzen 5700g Ryzen 5700g Firmware Ryzen 5700ge Ryzen 5700ge Firmware Ryzen 5800x Ryzen 5800x3d Ryzen 5800x3d Firmware Ryzen 5800x Firmware Ryzen 5900x Ryzen 5900x Firmware Ryzen 5950x Ryzen 5950x Firmware Ryzen Pro 2200g Ryzen Pro 2200g Firmware Ryzen Pro 2200ge Ryzen Pro 2200ge Firmware Ryzen Pro 2400g Ryzen Pro 2400g Firmware Ryzen Pro 2400ge Ryzen Pro 2400ge Firmware Ryzen Pro 3200g Ryzen Pro 3200g Firmware Ryzen Pro 3200ge Ryzen Pro 3200ge Firmware Ryzen Pro 3350g Ryzen Pro 3350g Firmware Ryzen Pro 3400g Ryzen Pro 3400g Firmware Ryzen Pro 3400ge Ryzen Pro 3400ge Firmware Ryzen Pro 3600 Ryzen Pro 3600 Firmware Ryzen Pro 3700 Ryzen Pro 3700 Firmware Ryzen Pro 3900 Ryzen Pro 3900 Firmware Ryzen Pro 4350g Ryzen Pro 4350g Firmware Ryzen Pro 4350ge Ryzen Pro 4350ge Firmware Ryzen Pro 4650g Ryzen Pro 4650g Firmware Ryzen Pro 4650ge Ryzen Pro 4650ge Firmware Ryzen Pro 4750g Ryzen Pro 4750g Firmware Ryzen Pro 4750ge Ryzen Pro 4750ge Firmware Ryzen Pro 5350g Ryzen Pro 5350g Firmware Ryzen Pro 5350ge Ryzen Pro 5350ge Firmware Ryzen Pro 5650g Ryzen Pro 5650g Firmware Ryzen Pro 5650ge Ryzen Pro 5650ge Firmware Ryzen Pro 5750g Ryzen Pro 5750g Firmware Ryzen Pro 5750ge Ryzen Pro 5750ge Firmware Ryzen Threadripper 1900x Ryzen Threadripper 1900x Firmware Ryzen Threadripper 1920x Ryzen Threadripper 1920x Firmware Ryzen Threadripper 1950x Ryzen Threadripper 1950x Firmware Ryzen Threadripper 2920x Ryzen Threadripper 2920x Firmware Ryzen Threadripper 2950x Ryzen Threadripper 2950x Firmware Ryzen Threadripper 2970wx Ryzen Threadripper 2970wx Firmware Ryzen Threadripper 2990wx Ryzen Threadripper 2990wx Firmware Ryzen Threadripper 3960x Ryzen Threadripper 3960x Firmware Ryzen Threadripper 3970x Ryzen Threadripper 3970x Firmware Ryzen Threadripper 3990x Ryzen Threadripper 3990x Firmware Ryzen Threadripper Pro 3945wx Ryzen Threadripper Pro 3945wx Firmware Ryzen Threadripper Pro 3955wx Ryzen Threadripper Pro 3955wx Firmware Ryzen Threadripper Pro 3975wx Ryzen Threadripper Pro 3975wx Firmware Ryzen Threadripper Pro 3995wx Ryzen Threadripper Pro 3995wx Firmware

Configuration 1 [-]

AND

cpe:2.3:o:amd:ryzen_pro_5650g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_5650g:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:amd:ryzen_pro_5650ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_5650ge:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:amd:ryzen_pro_5750g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_5750g:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:amd:ryzen_pro_5750ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_5750ge:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:amd:ryzen_pro_5350g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_5350g:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:amd:ryzen_pro_5350ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_5350ge:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:amd:ryzen_pro_4750g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_4750g:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:amd:ryzen_pro_4750ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_4750ge:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:amd:ryzen_pro_4650g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_4650g:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:amd:ryzen_pro_4650ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_4650ge:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:amd:ryzen_pro_4350g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_4350g:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:amd:ryzen_pro_4350ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_4350ge:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3900_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3900:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3700_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3700:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3600_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3600:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3400g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3400g:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3400ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3400ge:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3350g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3350g:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3200g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3200g:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:amd:ryzen_pro_3200ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_3200ge:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:amd:ryzen_pro_2400g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_2400g:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:amd:ryzen_pro_2400ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_2400ge:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:amd:ryzen_pro_2200g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_2200g:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:amd:ryzen_pro_2200ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_pro_2200ge:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_pro_3995wx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_pro_3995wx:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_pro_3975wx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_pro_3975wx:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_pro_3955wx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_pro_3955wx:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_pro_3945wx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_pro_3945wx:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:amd:athlon_gold_pro_3150g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_gold_pro_3150g:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:amd:athlon_gold_pro_3150ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_gold_pro_3150ge:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:amd:athlon_silver_pro_3125ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_silver_pro_3125ge:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:amd:athlon_pro_300ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_pro_300ge:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:amd:athlon_pro_200ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_pro_200ge:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_3990x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_3990x:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_3970x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_3970x:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_3960x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_3960x:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_2990wx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_2990wx:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_2970wx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_2970wx:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_2950x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_2950x:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_2920x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_2920x:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_1950x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_1950x:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_1920x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_1920x:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_1920x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_1920x:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:amd:ryzen_threadripper_1900x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_threadripper_1900x:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:amd:ryzen_5950x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5950x:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:amd:ryzen_5800x3d_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5800x3d:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:amd:ryzen_5900x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5900x:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:amd:ryzen_5800x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5800x:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:amd:ryzen_5600x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5600x:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:amd:ryzen_5700g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5700g:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:amd:ryzen_5600g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5600g:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:amd:ryzen_5700g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5700g:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:amd:ryzen_5700ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5700ge:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:amd:ryzen_5600g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5600g:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:amd:ryzen_5600ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5600ge:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:amd:ryzen_5300g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5300g:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:amd:ryzen_5300ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5300ge:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:amd:ryzen_4700g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_4700g:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:amd:ryzen_4600g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_4600g:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:amd:ryzen_4300g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_4300g:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:amd:ryzen_4700ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_4700ge:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:amd:ryzen_4600ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_4600ge:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:amd:ryzen_4300ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_4300ge:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:amd:athlon_3150ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_3150ge:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:amd:athlon_3150g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_3150g:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:amd:athlon_3050ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:athlon_3050ge:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.openwall.com/lists/oss-security/2023/12/05/3
https://developer.arm.com/Arm%20Security%20Center/TLB-Based%20Side%20Channel%20Attack
https://nvd.nist.gov/vuln/detail/CVE-2020-12965
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1010
https://www.cve.org/CVERecord?id=CVE-2020-12965
https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/best-practices/refined-speculative-execution-terminology.html
https://www.openwall.com/lists/oss-security/2023/12/05/3

History

No history.

MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2022-02-04T22:29:13.634345Z

Updated: 2024-09-16T22:40:10.602Z

Reserved: 2020-05-15T00:00:00

Link: CVE-2020-12965

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-02-04T23:15:10.293

Modified: 2023-12-06T03:15:06.827

Link: CVE-2020-12965

Redhat

Severity : Moderate

Publid Date: 2023-12-05T00:00:00Z

Links: CVE-2020-12965 - Bugzilla

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object