CVE-2022-37459 Information

Description

Ampere Altra devices before 1.08g and Ampere Altra Max devices before 2.05a allow attackers to control the predictions for return addresses and potentially hijack code flow to execute arbitrary code via a side-channel attack aka a \Retbleed\ issue.

Reference

https://developer.arm.com/documentation/ka005138/1-0/ https://amperecomputing.com/products/security-bulletins/retbleed.html