In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c. #### Bugs * <https://launchpad.net/bugs/1843533> #### Notes Author| Note ---|--- [sbeattie](<https://launchpad.net/~sbeattie>) | powerpc arches only

Affected Package

OS OS Version Package Name Package Version
ubuntu 19.04 linux 5.0.0-29.31
ubuntu upstream linux 5.3~rc8
ubuntu 19.04 linux-aws 5.0.0-1016.18
ubuntu upstream linux-aws 5.3~rc8
ubuntu upstream linux-aws-5.0 5.3~rc8
ubuntu upstream linux-aws-hwe 5.3~rc8
ubuntu 16.04 linux-aws-hwe 4.15.0-1050.52~16.04.1
ubuntu 19.04 linux-azure 5.0.0-1020.21
ubuntu 14.04 linux-azure 4.15.0-1059.64~14.04.1
ubuntu upstream linux-azure 5.3~rc8
ubuntu 16.04 linux-azure 4.15.0-1059.64
ubuntu upstream linux-azure-5.3 5.3~rc8
ubuntu upstream linux-azure-edge 5.3~rc8
ubuntu 16.04 linux-azure-edge 4.15.0-1059.64
ubuntu 19.04 linux-gcp 5.0.0-1017.17
ubuntu upstream linux-gcp 5.3~rc8
ubuntu 16.04 linux-gcp 4.15.0-1044.46
ubuntu upstream linux-gcp-5.3 5.3~rc8
ubuntu upstream linux-gcp-edge 5.3~rc8
ubuntu upstream linux-gke-4.15 5.3~rc8
ubuntu upstream linux-gke-5.0 5.3~rc8
ubuntu upstream linux-hwe 5.3~rc8
ubuntu 16.04 linux-hwe 4.15.0-64.73~16.04.1
ubuntu upstream linux-hwe-edge 5.3~rc8
ubuntu 16.04 linux-hwe-edge 4.15.0-64.73~16.04.1
ubuntu 19.04 linux-kvm 5.0.0-1017.18
ubuntu upstream linux-kvm 5.3~rc8
ubuntu upstream linux-lts-trusty 5.3~rc8
ubuntu upstream linux-lts-xenial 5.3~rc8
ubuntu 19.04 linux-oem was pending \[4.15.0-1056.65\] now end-of-life
ubuntu 19.10 linux-oem 4.15.0-1059.68
ubuntu upstream linux-oem 5.3~rc8
ubuntu 16.04 linux-oem any
ubuntu upstream linux-oem-5.4 5.3~rc8
ubuntu 19.04 linux-oem-osp1 was pending \[5.0.0-1022.24\] now end-of-life
ubuntu 19.10 linux-oem-osp1 5.0.0-1022.24
ubuntu upstream linux-oem-osp1 5.3~rc8
ubuntu 19.04 linux-oracle 5.0.0-1004.8
ubuntu upstream linux-oracle 5.3~rc8
ubuntu 16.04 linux-oracle 4.15.0-1025.28~16.04.1
ubuntu upstream linux-oracle-5.0 5.3~rc8
ubuntu 19.04 linux-raspi2 5.0.0-1017.17
ubuntu upstream linux-raspi2 5.3~rc8
ubuntu upstream linux-raspi2-5.3 5.3~rc8
ubuntu 19.04 linux-snapdragon 5.0.0-1021.22
ubuntu upstream linux-snapdragon 5.3~rc8