IM
IronMonkey Threat Research

CVE-2026-31628 MEDIUM

Published: 2026-04-24 | Last Modified: 2026-07-14 | Status: Modified

Description

In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results from previous operations. Those results can be leaked by another, attacker thread. Fix that with a chicken bit.

CVSS Metrics

Base Score: 5.5 (MEDIUM)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack VectorLOCAL
Attack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactNONE
Integrity ImpactNONE
Availability ImpactHIGH

Source: [email protected]

Type: Primary

Exploitability Score: 1.8

Impact Score: 3.6

Weaknesses

Source Type Description
[email protected] Primary
en NVD-CWE-noinfo

Affected Products

Vendor Product Version Update Type
linux linux_kernel * <built-in method update of dict object at 0x702bde536980> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bde537e40> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702ba6edb8c0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd7d43c0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd7d7c00> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd7d4740> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd7d5b00> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd7d7540> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd7d6380> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd7d7b80> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702b83f2c7c0> Operating System
linux linux_kernel 4.14 <built-in method update of dict object at 0x702bde534b00> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:4.14:-:*:*:*:*:*:*

References

Notification
Message here