vulnerability

Ubuntu: (Multiple Advisories) (CVE-2019-19602): Linux kernel vulnerabilities

Try Surface Command
Back to search
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:C/I:N/A:P)
Published
Dec 5, 2019
Added
Feb 19, 2020
Modified
Aug 18, 2025

Description

fpregs_state_valid in arch/x86/include/asm/fpu/internal.h in the Linux kernel before 5.4.2, when GCC 9 is used, allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact because of incorrect fpu_fpregs_owner_ctx caching, as demonstrated by mishandling of signal-based non-cooperative preemption in Go 1.14 prereleases on amd64, aka CID-59c4bd853abc.

Solutions

ubuntu-upgrade-linux-image-5-3-0-1009-oracleubuntu-upgrade-linux-image-5-3-0-1010-kvmubuntu-upgrade-linux-image-5-3-0-1011-awsubuntu-upgrade-linux-image-5-3-0-1012-gcpubuntu-upgrade-linux-image-5-3-0-1013-azureubuntu-upgrade-linux-image-5-3-0-1018-raspi2ubuntu-upgrade-linux-image-5-3-0-40-genericubuntu-upgrade-linux-image-5-3-0-40-generic-lpaeubuntu-upgrade-linux-image-5-3-0-40-lowlatencyubuntu-upgrade-linux-image-5-3-0-40-snapdragonubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-azure-edgeubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-gcp-edgeubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-18-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-18-04ubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-18-04ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-raspi2-hwe-18-04ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-snapdragon-hwe-18-04ubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-18-04

References

    Title
    NEW

    Explore Exposure Command

    Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

    Try it today