N/A

A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.

N/A

N/A

Linux kernel 信息泄露漏洞

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。 Linux kernel中存在信息泄露漏洞。该漏洞源于网络系统或产品在运行过程中存在配置等错误。未授权的攻击者可利用漏洞获取受影响组件敏感信息。以下产品及版本受到影响：Linux kernel 4.4.x版本至4.4.190版本，4.9.x版本至4.9.190版本，4.14.x版本至4.14.141版本，4.19.x版本至4.19.69版本，5.2.x版本至5.2.11。

N/A

N/A