[USN-4157-1] Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel.
Wen Huang discovered that the Marvell Wi-Fi device driver in the Linux
kernel did not properly perform bounds checking, leading to a heap
overflow. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2019-14814,
CVE-2019-14815, CVE-2019-14816)
Matt Delco discovered that the KVM hypervisor implementation in the Linux
kernel did not properly perform bounds checking when handling coalesced
MMIO write operations. A local attacker with write access to /dev/kvm could
use this to cause a denial of service (system crash). (CVE-2019-14821)
Hui Peng and Mathias Payer discovered that the 91x Wi-Fi driver in the
Linux kernel did not properly handle error conditions on initialization,
leading to a double-free vulnerability. A physically proximate attacker
could use this to cause a denial of service (system crash).
(CVE-2019-15504)
It was discovered that the Technisat DVB-S/S2 USB device driver in the
Linux kernel contained a buffer overread. A physically proximate attacker
could use this to cause a denial of service (system crash) or possibly
expose sensitive information. (CVE-2019-15505)
Brad Spengler discovered that a Spectre mitigation was improperly
implemented in the ptrace susbsystem of the Linux kernel. A local attacker
could possibly use this to expose sensitive information. (CVE-2019-15902)
It was discovered that the IPv6 RDS implementation in the Linux kernel did
not properly initialize fields in a data structure returned to user space.
A local attacker could use this to expose sensitive information (kernel
memory). Please note that the RDS protocol is disabled via blocklist in
Ubuntu by default. (CVE-2019-16714)
It was discovered that an integer overflow existed in the Binder
implementation of the Linux kernel, leading to a buffer overflow. A local
attacker could use this to escalate privileges. (CVE-2019-2181)
- ID
- USN-4157-1
- Severity
- critical
- Severity from
- CVE-2019-15504
- URL
- https://ubuntu.com/security/notices/USN-4157-1
- Published
-
2019-10-17T00:52:55
(4 years ago) - Modified
-
2019-10-17T00:52:55
(4 years ago) - Other Advisories
-
- ALAS-2019-1281
- ALAS-2019-1293
- ALAS2-2019-1293
- ALSA-2024:3138
- DSA-4531-1
- ELSA-2019-3517
- ELSA-2019-3979
- ELSA-2019-4256
- ELSA-2019-4799
- ELSA-2019-4800
- ELSA-2019-4808
- ELSA-2019-4820
- ELSA-2020-0339
- ELSA-2020-0374
- ELSA-2020-5670
- ELSA-2020-5676
- ELSA-2020-5715
- ELSA-2020-5866
- ELSA-2024-3138
- FEDORA-2019-021c968423
- FEDORA-2019-057d691fd4
- FEDORA-2019-124a241044
- FEDORA-2019-15e141c6a7
- FEDORA-2019-1689d3fe07
- FEDORA-2019-41e28660ae
- FEDORA-2019-4c91a2f76e
- FEDORA-2019-7a3fc17778
- FEDORA-2019-8846a1a5a2
- FEDORA-2019-97380355ae
- FEDORA-2019-a570a92d5a
- FEDORA-2019-e3010166bd
- FEDORA-2020-2a5cdd665c
- FEDORA-2020-c2d89d14d0
- FEDORA-2020-fe00e12580
- openSUSE-SU-2019:2173-1
- openSUSE-SU-2019:2181-1
- openSUSE-SU-2019:2307-1
- openSUSE-SU-2019:2308-1
- RHSA-2019:3309
- RHSA-2019:3517
- RHSA-2019:3978
- RHSA-2019:3979
- RHSA-2019:4256
- RHSA-2020:0027
- RHSA-2020:0328
- RHSA-2020:0339
- RHSA-2020:0374
- RHSA-2020:0375
- RHSA-2020:1016
- RHSA-2020:1070
- RHSA-2024:2950
- RHSA-2024:3138
- RLSA-2024:3138
- SSA:2019-311-01
- SUSE-SU-2019:2412-1
- SUSE-SU-2019:2414-1
- SUSE-SU-2019:2424-1
- SUSE-SU-2019:2648-1
- SUSE-SU-2019:2651-1
- SUSE-SU-2019:2658-1
- SUSE-SU-2019:2706-1
- SUSE-SU-2019:2710-1
- SUSE-SU-2019:2738-1
- SUSE-SU-2019:2756-1
- SUSE-SU-2019:2879-1
- SUSE-SU-2019:2949-1
- SUSE-SU-2019:2950-1
- SUSE-SU-2019:2984-1
- SUSE-SU-2019:3200-1
- SUSE-SU-2019:3295-1
- SUSE-SU-2020:0093-1
- SUSE-SU-2020:2491-1
- USN-4157-2
- USN-4162-1
- USN-4162-2
- USN-4163-1
- USN-4163-2
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-virtual?distro=disco | ubuntu | linux-image-virtual | < 5.0.0.32.33 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-snapdragon?distro=disco | ubuntu | linux-image-snapdragon | < 5.0.0.1024.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-raspi2?distro=disco | ubuntu | linux-image-raspi2 | < 5.0.0.1020.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-lowlatency?distro=disco | ubuntu | linux-image-lowlatency | < 5.0.0.32.33 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-kvm?distro=disco | ubuntu | linux-image-kvm | < 5.0.0.1020.20 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-gke?distro=disco | ubuntu | linux-image-gke | < 5.0.0.1021.47 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-generic?distro=disco | ubuntu | linux-image-generic | < 5.0.0.32.33 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-generic-lpae?distro=disco | ubuntu | linux-image-generic-lpae | < 5.0.0.32.33 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-gcp?distro=disco | ubuntu | linux-image-gcp | < 5.0.0.1021.47 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-azure?distro=disco | ubuntu | linux-image-azure | < 5.0.0.1023.22 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-aws?distro=disco | ubuntu | linux-image-aws | < 5.0.0.1019.20 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-32-lowlatency?distro=disco | ubuntu | linux-image-5.0.0-32-lowlatency | < 5.0.0-32.34 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-32-generic?distro=disco | ubuntu | linux-image-5.0.0-32-generic | < 5.0.0-32.34 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-32-generic-lpae?distro=disco | ubuntu | linux-image-5.0.0-32-generic-lpae | < 5.0.0-32.34 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1024-snapdragon?distro=disco | ubuntu | linux-image-5.0.0-1024-snapdragon | < 5.0.0-1024.25 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1023-azure?distro=disco | ubuntu | linux-image-5.0.0-1023-azure | < 5.0.0-1023.24 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1021-gcp?distro=disco | ubuntu | linux-image-5.0.0-1021-gcp | < 5.0.0-1021.21 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1020-raspi2?distro=disco | ubuntu | linux-image-5.0.0-1020-raspi2 | < 5.0.0-1020.20 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1020-kvm?distro=disco | ubuntu | linux-image-5.0.0-1020-kvm | < 5.0.0-1020.21 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1019-aws?distro=disco | ubuntu | linux-image-5.0.0-1019-aws | < 5.0.0-1019.21 | disco |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |