[SECURITY] [DLA 1989-1] linux security update

2019-11-1221:25:19

lists.debian.org

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

22.4%

JSON

Package : linux
Version : 3.16.76-1
CVE ID : CVE-2019-0154 CVE-2019-11135

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service, or information
leak.

CVE-2019-0154

Intel discovered that on their 8th and 9th generation GPUs,
reading certain registers while the GPU is in a low-power state
can cause a system hang.  A local user permitted to use the GPU
can use this for denial of service.

This update mitigates the issue through changes to the i915
driver.

The affected chips (gen8) are listed at
&lt;https://en.wikipedia.org/wiki/List_of_Intel_graphics_processing_units#Gen8&gt;;.

CVE-2019-11135

It was discovered that on Intel CPUs supporting transactional
memory (TSX), a transaction that is going to be aborted may
continue to execute speculatively, reading sensitive data from
internal buffers and leaking it through dependent operations.
Intel calls this &quot;TSX Asynchronous Abort&quot; (TAA).

For CPUs affected by the previously published Microarchitectural
Data Sampling (MDS) issues (CVE-2018-12126, CVE-2018-12127,
CVE-2018-12130, CVE-2019-11091), the existing mitigation also
mitigates this issue.

For processors that are vulnerable to TAA but not MDS, this update
disables TSX by default.  This mitigation requires updated CPU
microcode.  An updated intel-microcode package (only available in
Debian non-free) will be provided via a future DLA.  The updated
CPU microcode may also be available as part of a system firmware
(&quot;BIOS&quot;) update.

Further information on the mitigation can be found at
&lt;https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html&gt;
or in the linux-doc-3.16 package.

Intel&#x27;s explanation of the issue can be found at
&lt;https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort&gt;;.

For Debian 8 "Jessie", these problems have been fixed in version
3.16.76-1. This update also includes other fixes from upstream stable
updates.

We recommend that you upgrade your linux packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

–
Ben Hutchings - Debian developer, member of kernel, installer and LTS teams
Attachment:
signature.asc
Description: This is a digitally signed message part

OSVersionArchitecturePackageVersionFilename
Debian8i386i2c-modules-3.16.0-10-686-pae-di< 3.16.76-1i2c-modules-3.16.0-10-686-pae-di_3.16.76-1_i386.deb
Debian9mips64elfuse-modules-4.9.0-11-loongson-3-di< 4.9.189-3+deb9u2fuse-modules-4.9.0-11-loongson-3-di_4.9.189-3+deb9u2_mips64el.deb
Debian9amd64libcpupower1< 4.9.189-3+deb9u2libcpupower1_4.9.189-3+deb9u2_amd64.deb
Debian10ppc64ellinux-image-4.19.0-6-powerpc64le-dbg< 4.19.67-2+deb10u2linux-image-4.19.0-6-powerpc64le-dbg_4.19.67-2+deb10u2_ppc64el.deb
Debian10i386linux-headers-4.19.0-6-686< 4.19.67-2+deb10u2linux-headers-4.19.0-6-686_4.19.67-2+deb10u2_i386.deb
Debian10mipssata-modules-4.19.0-6-octeon-di< 4.19.67-2+deb10u2sata-modules-4.19.0-6-octeon-di_4.19.67-2+deb10u2_mips.deb
Debian8armhfevent-modules-3.16.0-10-armmp-di< 3.16.76-1event-modules-3.16.0-10-armmp-di_3.16.76-1_armhf.deb
Debian9mipselcrypto-dm-modules-4.9.0-11-loongson-3-di< 4.9.189-3+deb9u2crypto-dm-modules-4.9.0-11-loongson-3-di_4.9.189-3+deb9u2_mipsel.deb
Debian10armhfcompress-modules-4.19.0-6-armmp-di< 4.19.67-2+deb10u2compress-modules-4.19.0-6-armmp-di_4.19.67-2+deb10u2_armhf.deb
Debian9armelusbip-dbgsym< 2.0+4.9.189-3+deb9u2usbip-dbgsym_2.0+4.9.189-3+deb9u2_armel.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	i386	i2c-modules-3.16.0-10-686-pae-di	< 3.16.76-1	i2c-modules-3.16.0-10-686-pae-di_3.16.76-1_i386.deb
Debian	9	mips64el	fuse-modules-4.9.0-11-loongson-3-di	< 4.9.189-3+deb9u2	fuse-modules-4.9.0-11-loongson-3-di_4.9.189-3+deb9u2_mips64el.deb
Debian	9	amd64	libcpupower1	< 4.9.189-3+deb9u2	libcpupower1_4.9.189-3+deb9u2_amd64.deb
Debian	10	ppc64el	linux-image-4.19.0-6-powerpc64le-dbg	< 4.19.67-2+deb10u2	linux-image-4.19.0-6-powerpc64le-dbg_4.19.67-2+deb10u2_ppc64el.deb
Debian	10	i386	linux-headers-4.19.0-6-686	< 4.19.67-2+deb10u2	linux-headers-4.19.0-6-686_4.19.67-2+deb10u2_i386.deb
Debian	10	mips	sata-modules-4.19.0-6-octeon-di	< 4.19.67-2+deb10u2	sata-modules-4.19.0-6-octeon-di_4.19.67-2+deb10u2_mips.deb
Debian	8	armhf	event-modules-3.16.0-10-armmp-di	< 3.16.76-1	event-modules-3.16.0-10-armmp-di_3.16.76-1_armhf.deb
Debian	9	mipsel	crypto-dm-modules-4.9.0-11-loongson-3-di	< 4.9.189-3+deb9u2	crypto-dm-modules-4.9.0-11-loongson-3-di_4.9.189-3+deb9u2_mipsel.deb
Debian	10	armhf	compress-modules-4.19.0-6-armmp-di	< 4.19.67-2+deb10u2	compress-modules-4.19.0-6-armmp-di_4.19.67-2+deb10u2_armhf.deb
Debian	9	armel	usbip-dbgsym	< 2.0+4.9.189-3+deb9u2	usbip-dbgsym_2.0+4.9.189-3+deb9u2_armel.deb