PT-2020-10140 · Linux+4 · Linux+4

Prasad J Pandit

·

Published

2019-11-18

·

Updated

2024-06-15

·

CVE-2019-19338

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Linux upstream kernel versions prior to 5.5
Description A flaw was found in the fix for a previous issue, related to how Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. This issue affects guests running on Cascade Lake CPUs and requires that the host has 'TSX' enabled. The flaw allows for the confidentiality of data to be compromised.
Recommendations For Linux upstream kernel versions prior to 5.5, update to version 5.5 or later to resolve the issue. As a temporary workaround, consider disabling the TSX feature on the host CPU to minimize the risk of exploitation. Restrict access to sensitive data on guests running on affected hosts until the issue is resolved.

Fix

Side Channel Attack

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-385CWE-203

Related Identifiers

ALT-PU-2020-1145
ALT-PU-2020-1251
ALT-PU-2020-1421
ALT-PU-2020-1450
ALT-PU-2020-1714
ALT-PU-2020-2164
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
CESA-2020_0328
CESA-2020_0339
CESA-2020_0839
CVE-2019-19338
OPENSUSE-SU-2020:0336-1
OPENSUSE-SU-2020_0336-1
OPENSUSE-SU-2024:10728-1
OPENSUSE-SU-2024:13704-1
RHSA-2020:0328
RHSA-2020:0339
RHSA-2020:0834
RHSA-2020:0839
RHSA-2020:1465
RHSA-2020_0328
RHSA-2020_0339
RHSA-2020_0834
RHSA-2020_0839
SUSE-SU-2019:3316-1
SUSE-SU-2019:3379-1
SUSE-SU-2019:3381-1
SUSE-SU-2019:3389-1
SUSE-SU-2020:0093-1
SUSE-SU-2020:0511-1
SUSE-SU-2020:0560-1
SUSE-SU-2020:0584-1
SUSE-SU-2020:0599-1
SUSE-SU-2020:0613-1

Affected Products

Alt Linux
Centos
Linux
Red Hat
Suse