{"id":"CVE-2025-22047","summary":"x86/microcode/AMD: Fix __apply_microcode_amd()'s return value","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix __apply_microcode_amd()'s return value\n\nWhen verify_sha256_digest() fails, __apply_microcode_amd() should propagate\nthe failure by returning false (and not -1 which is promoted to true).","modified":"2026-05-18T05:58:04.865748473Z","published":"2025-04-16T14:12:07.061Z","related":["SUSE-SU-2026:0447-1","SUSE-SU-2026:0471-1","SUSE-SU-2026:0472-1","SUSE-SU-2026:0587-1","SUSE-SU-2026:20477-1","SUSE-SU-2026:20498-1","SUSE-SU-2026:20845-1","SUSE-SU-2026:20876-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/22xxx/CVE-2025-22047.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/31ab12df723543047c3fc19cb8f8c4498ec6267f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/763f4d638f71cb45235395790a46e9f9e84227fd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7f705a45f130a85fbf31c2abdc999c65644c8307"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ada88219d5315fc13f2910fe278c7112d8d68889"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d295c58fad1d5ab987a81f139dd21498732c4f13"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/22xxx/CVE-2025-22047.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-22047"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bef830144febedb7de86863ae99d8f53bed76e95"},{"fixed":"763f4d638f71cb45235395790a46e9f9e84227fd"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"3e8653e399e7111a3e87d534ff4533b250ae574f"},{"fixed":"ada88219d5315fc13f2910fe278c7112d8d68889"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"c162ba4f45ab6ef3b7114af6fb419f1833f050c0"},{"fixed":"d295c58fad1d5ab987a81f139dd21498732c4f13"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"50cef76d5cb0e199cda19f026842560f6eedc4f7"},{"fixed":"7f705a45f130a85fbf31c2abdc999c65644c8307"},{"fixed":"31ab12df723543047c3fc19cb8f8c4498ec6267f"}]}],"versions":["v6.6.86","v6.6.85","v6.6.84","v6.6.83","v6.6.82","v6.6.81","v6.12.22","v6.12.21","v6.12.20","v6.12.19","v6.12.18","v6.13.10","v6.13.9","v6.13.8","v6.13.7","v6.13.6"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22047.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.6.87"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.23"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.13.11"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.14.0"},{"fixed":"6.14.2"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22047.json"}}],"schema_version":"1.7.5"}