Merge pull request #204369 from cynthn/patch-612

PRMerger16 · web-flow · commit a252f3488c44 · 2022-07-12T09:49:22.000-07:00
Update virtual-machines-common-mitigate-se.md
diff --git a/includes/virtual-machines-common-mitigate-se.md b/includes/virtual-machines-common-mitigate-se.md
@@ -10,14 +10,16 @@
  ms.custom: include file
 ---
 
-This article provides guidance for a new class of silicon based micro-architectural and speculative execution side-channel vulnerabilities that affect many modern processors and operating systems. This includes Intel, AMD, and ARM. Specific details for these silicon-based vulnerabilities can be found in the following security advisories: 
+This article provides guidance for a new class of silicon based micro-architectural and speculative execution side-channel vulnerabilities that affect many modern processors and operating systems. This includes Intel, AMD, and ARM. Specific details for these silicon-based vulnerabilities can be found in the following security advisories and CVEs: 
 - [ADV180002 - Guidance to mitigate speculative execution side-channel vulnerabilities](https://msrc.microsoft.com/update-guide/vulnerability/ADV180002)
 - [ADV180012 - Microsoft Guidance for Speculative Store Bypass](https://msrc.microsoft.com/update-guide/vulnerability/ADV180012)
 - [ADV180013 - Microsoft Guidance for Rogue System Register Read](https://msrc.microsoft.com/update-guide/vulnerability/ADV180013)
 - [ADV180016 - Microsoft Guidance for Lazy FP State Restore](https://msrc.microsoft.com/update-guide/vulnerability/ADV180016)
 - [ADV180018 - Microsoft Guidance to mitigate L1TF variant](https://msrc.microsoft.com/update-guide/vulnerability/ADV180018)
 - [ADV190013 - Microsoft Guidance to mitigate Microarchitectural Data Sampling vulnerabilities](https://msrc.microsoft.com/update-guide/vulnerability/ADV190013)
 - [ADV220002 - Microsoft Guidance on Intel Processor MMIO Stale Data Vulnerabilities](https://msrc.microsoft.com/update-guide/vulnerability/ADV220002)
+- [CVE-2022-23816](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23816)
+- [CVE-2022-21123](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23825)
 
 
 The disclosure of these CPU vulnerabilities has resulted in questions from customers seeking more clarity.  
@@ -106,6 +108,11 @@ CPU Get NumberOfCores,NumberOfLogicalProcessors /Format:List
 
 If the number of logical processors is greater than physical processors (cores), then hyper-threading is enabled. If you are running a hyper-threaded VM, [contact Azure Support](https://aka.ms/MicrocodeEnablementRequest-SupportTechnical) to get hyper-threading disabled. Once hyper-threading is disabled, support will require a full VM reboot. Refer to [Core count](#core-count) to understand why your VM core count decreased.
 
+### Option 3
+
+For [CVE-2022-23816](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23816) and [CVE-2022-21123](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23825) (AMD CPU Branch Type Confusion), follow both **Option 1** and **Option 2** above.
+
+
 
 ### Linux
 
@@ -151,4 +158,4 @@ When a hyper-threaded VM is created, Azure allocates 2 threads per core - these
 
 ## Next steps
 
-For more information about how security is integrated into every aspect of Azure, see [Azure Security Documentation](../articles/security/index.yml). 
+For more information about how security is integrated into every aspect of Azure, see [Azure Security Documentation](../articles/security/index.yml). 
