What is the severity of CVE-2021-47226?

CVE-2021-47226 is classified as a medium severity vulnerability in the Linux kernel.

How do I fix CVE-2021-47226?

To fix CVE-2021-47226, update your Linux kernel to a version that includes the security patch for this vulnerability.

What versions of the Linux kernel are affected by CVE-2021-47226?

CVE-2021-47226 affects Linux kernel versions from 5.2 up to 5.10.46 and also 5.11 up to 5.12.13.

What is the impact of CVE-2021-47226?

The impact of CVE-2021-47226 could lead to potential privilege escalation or corruption of the floating-point state.

Is CVE-2021-47226 specific to certain architectures?

CVE-2021-47226 is specifically related to the x86 architecture in the Linux kernel.

Vulnerability/
CVE-2021-47226

high

7.1

CWE

203

21/5/2024

29/4/2025

CVE-2021-47226: x86/fpu: Invalidate FPU state after a failed XRSTOR from a user buffer

First published: Tue May 21 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Invalidate FPU state after a failed XRSTOR from a user buffer Both Intel and AMD consider it to be architecturally valid for XRSTOR to fail with #PF but nonetheless change the register state. The actual conditions under which this might occur are unclear [1], but it seems plausible that this might be triggered if one sibling thread unmaps a page and invalidates the shared TLB while another sibling thread is executing XRSTOR on the page in question. __fpu__restore_sig() can execute XRSTOR while the hardware registers are preserved on behalf of a different victim task (using the fpu_fpregs_owner_ctx mechanism), and, in theory, XRSTOR could fail but modify the registers. If this happens, then there is a window in which __fpu__restore_sig() could schedule out and the victim task could schedule back in without reloading its own FPU registers. This would result in part of the FPU state that __fpu__restore_sig() was attempting to load leaking into the victim task's user-visible state. Invalidate preserved FPU registers on XRSTOR failure to prevent this situation from corrupting any state. [1] Frequent readers of the errata lists might imagine "complex microarchitectural conditions".

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel
Linux Kernel	>=5.2<5.10.46
Linux Kernel	>=5.11<5.12.13
Linux Kernel	=5.13-rc1
Linux Kernel	=5.13-rc2
Linux Kernel	=5.13-rc3
Linux Kernel	=5.13-rc4
Linux Kernel	=5.13-rc5
Linux Kernel	=5.13-rc6

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2021-47226?
CVE-2021-47226 is classified as a medium severity vulnerability in the Linux kernel.
How do I fix CVE-2021-47226?
To fix CVE-2021-47226, update your Linux kernel to a version that includes the security patch for this vulnerability.
What versions of the Linux kernel are affected by CVE-2021-47226?
CVE-2021-47226 affects Linux kernel versions from 5.2 up to 5.10.46 and also 5.11 up to 5.12.13.
What is the impact of CVE-2021-47226?
The impact of CVE-2021-47226 could lead to potential privilege escalation or corruption of the floating-point state.
Is CVE-2021-47226 specific to certain architectures?
CVE-2021-47226 is specifically related to the x86 architecture in the Linux kernel.

agent/references
agent/title
agent/type
agent/description
agent/first-publish-date
agent/author
agent/event
collector/mitre-cve
source/MITRE
agent/source
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/remedy
agent/severity
agent/last-modified-date
agent/weakness
agent/softwarecombine
agent/tags
vendor/linux
canonical/linux kernel
version/linux kernel/5.2
version/linux kernel/5.11
version/linux kernel/5.13-rc1
version/linux kernel/5.13-rc2
version/linux kernel/5.13-rc3
version/linux kernel/5.13-rc4
version/linux kernel/5.13-rc5
version/linux kernel/5.13-rc6

Frequently Asked Questions

What is the severity of CVE-2021-47226?
CVE-2021-47226 is classified as a medium severity vulnerability in the Linux kernel.
How do I fix CVE-2021-47226?
To fix CVE-2021-47226, update your Linux kernel to a version that includes the security patch for this vulnerability.
What versions of the Linux kernel are affected by CVE-2021-47226?
CVE-2021-47226 affects Linux kernel versions from 5.2 up to 5.10.46 and also 5.11 up to 5.12.13.
What is the impact of CVE-2021-47226?
The impact of CVE-2021-47226 could lead to potential privilege escalation or corruption of the floating-point state.
Is CVE-2021-47226 specific to certain architectures?
CVE-2021-47226 is specifically related to the x86 architecture in the Linux kernel.

CVE-2021-47226: x86/fpu: Invalidate FPU state after a failed XRSTOR from a user buffer

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2021-47226?

How do I fix CVE-2021-47226?

What versions of the Linux kernel are affected by CVE-2021-47226?

What is the impact of CVE-2021-47226?

Is CVE-2021-47226 specific to certain architectures?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2021-47226?

How do I fix CVE-2021-47226?

What versions of the Linux kernel are affected by CVE-2021-47226?

What is the impact of CVE-2021-47226?

Is CVE-2021-47226 specific to certain architectures?