A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.

Affected Package

OS OS Version Package Name Package Version
ubuntu 19.04 linux 5.0.0-32.34
ubuntu 12.04 linux any
ubuntu 14.04 linux any
ubuntu upstream linux 2.6.12~rc2
ubuntu 16.04 linux 4.4.0-166.195
ubuntu 19.04 linux-aws 5.0.0-1019.21
ubuntu 14.04 linux-aws 4.4.0-1056.60
ubuntu upstream linux-aws 2.6.12~rc2
ubuntu 16.04 linux-aws 4.4.0-1096.107
ubuntu upstream linux-aws-5.0 2.6.12~rc2
ubuntu upstream linux-aws-hwe 2.6.12~rc2
ubuntu 16.04 linux-aws-hwe 4.15.0-1052.54~16.04.1
ubuntu 19.04 linux-azure 5.0.0-1023.24
ubuntu 14.04 linux-azure 4.15.0-1061.66~14.04.1
ubuntu upstream linux-azure 2.6.12~rc2
ubuntu 16.04 linux-azure 4.15.0-1061.66
ubuntu upstream linux-azure-5.3 2.6.12~rc2
ubuntu upstream linux-azure-edge 2.6.12~rc2
ubuntu 16.04 linux-azure-edge 4.15.0-1061.66
ubuntu 19.04 linux-gcp 5.0.0-1021.21
ubuntu upstream linux-gcp 2.6.12~rc2
ubuntu 16.04 linux-gcp 4.15.0-1047.50
ubuntu upstream linux-gcp-5.3 2.6.12~rc2
ubuntu upstream linux-gcp-edge 2.6.12~rc2
ubuntu upstream linux-gke-4.15 2.6.12~rc2
ubuntu upstream linux-gke-5.0 2.6.12~rc2
ubuntu upstream linux-gke-5.3 2.6.12~rc2
ubuntu upstream linux-hwe 2.6.12~rc2
ubuntu 16.04 linux-hwe 4.15.0-66.75~16.04.1
ubuntu upstream linux-hwe-edge 2.6.12~rc2
ubuntu 16.04 linux-hwe-edge 4.15.0-66.75~16.04.1
ubuntu 19.04 linux-kvm 5.0.0-1020.21
ubuntu upstream linux-kvm 2.6.12~rc2
ubuntu 16.04 linux-kvm 4.4.0-1060.67
ubuntu 12.04 linux-lts-trusty any
ubuntu upstream linux-lts-trusty 2.6.12~rc2
ubuntu 14.04 linux-lts-xenial 4.4.0-166.195~14.04.1
ubuntu upstream linux-lts-xenial 2.6.12~rc2
ubuntu 19.10 linux-oem 4.15.0-1059.68
ubuntu upstream linux-oem 2.6.12~rc2
ubuntu 16.04 linux-oem any
ubuntu upstream linux-oem-5.6 2.6.12~rc2
ubuntu 19.04 linux-oem-osp1 was pending \[5.0.0-1025.28\] now end-of-life
ubuntu upstream linux-oem-osp1 2.6.12~rc2
ubuntu 19.04 linux-oracle was pending \[5.0.0-1005.9\] now end-of-life
ubuntu upstream linux-oracle 2.6.12~rc2
ubuntu 16.04 linux-oracle 4.15.0-1027.30~16.04.1
ubuntu upstream linux-oracle-5.0 2.6.12~rc2
ubuntu upstream linux-oracle-5.3 2.6.12~rc2
ubuntu 19.04 linux-raspi2 5.0.0-1020.20
ubuntu upstream linux-raspi2 2.6.12~rc2
ubuntu 16.04 linux-raspi2 4.4.0-1124.133
ubuntu upstream linux-raspi2-5.3 2.6.12~rc2
ubuntu 19.04 linux-snapdragon 5.0.0-1024.25
ubuntu upstream linux-snapdragon 2.6.12~rc2
ubuntu 16.04 linux-snapdragon 4.4.0-1128.136