x86/CPU: Fix FPDSS on Zen1
Summary
| CVE | CVE-2026-31628 |
|---|---|
| State | PUBLISHED |
| Assigner | Linux |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2026-04-24 15:16:42 UTC |
| Updated | 2026-04-27 20:40:46 UTC |
| Description | In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results from previous operations. Those results can be leaked by another, attacker thread. Fix that with a chicken bit. |
Risk And Classification
Primary CVSS: v3.1 5.5 MEDIUM from [email protected]
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS: 0.000330000 probability, percentile 0.095380000 (date 2026-04-27)
Problem Types: NVD-CWE-noinfo
CVSS v3.1 Breakdown
Attack Vector
LocalAttack Complexity
LowPrivileges Required
LowUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
NoneAvailability
HighCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Linux | Linux Kernel | All | All | All | All |
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 ed7a3a246309ccc807238f1b4f159ee6d37ff9c4 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 0548529af20e68c6552817834b766646dd3bd7a7 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 1272cfedf4cd1019ddf583917a99b62f2d3645bb git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 91f02726b2203b71545713ecb7fb006e60a2d66f git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 b731aca06387b195058a9f6449a03b62efa1bd10 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 ad17f07e95e6e8505e2153e5b391f0d27eacce25 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 e6af5286efe5a56128b34032572c9ce9ebeccda3 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 546785c719418c6166834a47e372a88f5f7ae893 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 e55d98e7756135f32150b9b8f75d580d0d4b2dd3 git | Not specified |
| CNA | Linux | Linux | affected 5abd1583e06b3963e5c9d915760367de86808b78 git | Not specified |
| CNA | Linux | Linux | affected 4ba461d426490b6ed7e8298c4d3b7a13aa5d2686 git | Not specified |
| CNA | Linux | Linux | affected 5a63725cd18fcee2af6ec46ccb856b64ad3077b4 git | Not specified |
| CNA | Linux | Linux | affected 4.14 | Not specified |
| CNA | Linux | Linux | unaffected 4.14 semver | Not specified |
| CNA | Linux | Linux | unaffected 5.10.253 5.10.* semver | Not specified |
| CNA | Linux | Linux | unaffected 5.15.203 5.15.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.1.169 6.1.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.6.135 6.6.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.12.82 6.12.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.18.23 6.18.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.19.13 6.19.* semver | Not specified |
| CNA | Linux | Linux | unaffected 7.0.1 7.0.* semver | Not specified |
| CNA | Linux | Linux | unaffected 7.1-rc1 * original_commit_for_fix | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| git.kernel.org/stable/c/ad17f07e95e6e8505e2153e5b391f0d27eacce25 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/0548529af20e68c6552817834b766646dd3bd7a7 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/1272cfedf4cd1019ddf583917a99b62f2d3645bb | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/546785c719418c6166834a47e372a88f5f7ae893 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/ed7a3a246309ccc807238f1b4f159ee6d37ff9c4 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/e55d98e7756135f32150b9b8f75d580d0d4b2dd3 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/91f02726b2203b71545713ecb7fb006e60a2d66f | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/e6af5286efe5a56128b34032572c9ce9ebeccda3 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| git.kernel.org/stable/c/b731aca06387b195058a9f6449a03b62efa1bd10 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | Patch |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.