Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM75EECDFC779DA9FD1966C5DAD1AE11A16457B1CE376CB9360156AA150266966E
HistoryDec 20, 2019 - 8:47 a.m.

Security Bulletin: Multiple vulnerabilities CVE-2019-12410, CVE-2019-12408 in arrow package

2019-12-2008:47:33
www.ibm.com
10

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Summary

Multiple vulnerabilities CVE-2019-12410, CVE-2019-12408 in arrow package

Vulnerability Details

CVEID:CVE-2019-12410
**DESCRIPTION:**While investigating UBSAN errors in <https://github.com/apache/arrow/pull/5365&gt; it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data uninitialized when reading RLE null data from parquet. This affected the C++, Python, Ruby and R implementations. The uninitialized memory could potentially be shared if are transmitted over the wire (for instance with Flight) or persisted in the streaming IPC and file formats.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/171169 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2019-12408
**DESCRIPTION:**It was discovered that the C++ implementation (which underlies the R, Python and Ruby implementations) of Apache Arrow 0.14.0 to 0.14.1 had a uninitialized memory bug when building arrays with null values in some cases. This can lead to uninitialized memory being unintentionally shared if Arrow Arrays are transmitted over the wire (for instance with Flight) or persisted in the streaming IPC and file formats.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/171097 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM PowerAI 1.6.2 1.6.2

Remediation/Fixes

Affected Product(s) Version(s) APAR Remediation / First Fix
IBM Watson Machine Learning CE 1.6.2 None arrow-cpp 0.15.1 py36_603.g702c836

Packages affected: thrift-cpp, libcudf, cudf

Fix: thrift-cpp version updated to 0.12.0 for CVE-2019-0210 and including code fix/changes for CVE-2019-0205.

Before installation, verify that the specific build of cudf is available in the conda channel using the command:
conda search cudf=0.9.0 -c <https://public.dhe.ibm.com/ibmdl/export/pub/software/server/ibm-ai/conda/&gt;

Output of the above command should contain the following (in addition to other builds of cudf):

Name Version Build Channel

cudf 0.9.0 cuda10.1_py36_626.gddcad2d ibmdl/export/pub/software/server/ibm-ai/conda
cudf 0.9.0 cuda10.1_py37_626.gddcad2d ibmdl/export/pub/software/server/ibm-ai/conda

Few other packages that will be updated automatically to the following versions when the above build of cudf is installed:
arrow-cpp 0.15.1 py36_603.g702c836 ibmdl/export/pub/software/server/ibm-ai/conda
arrow-cpp 0.15.1 py37_603.g702c836 ibmdl/export/pub/software/server/ibm-ai/conda
pyarrow 0.15.1 py36_609.g3a6717a ibmdl/export/pub/software/server/ibm-ai/conda
pyarrow 0.15.1 py37_609.g3a6717a ibmdl/export/pub/software/server/ibm-ai/conda
parquet-cpp 1.5.1 579.g6eecc60 ibmdl/export/pub/software/server/ibm-ai/conda
libcudf 0.9.0 cuda10.1_609.g113236a ibmdl/export/pub/software/server/ibm-ai/conda
thrift-cpp 0.12.0 580.gf96fa62 ibmdl/export/pub/software/server/ibm-ai/conda

Installation of fix: Install the fix for python3.6 conda environment using the following command.
conda install -c <https://public.dhe.ibm.com/ibmdl/export/pub/software/server/ibm-ai/conda/&gt; cudf=0.9.0=cuda10.1_py36_626.gddcad2d

Verification: The following command should pass and give one line output in python3.6 conda environment:
conda list cudf | grep cuda10.1_py36_626.gddcad2d

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm poweraieq1.6.2

Related

ibm 11
nessus 9
gentoo 1
openvas 1
osv 11
github 4
prion 4
cve 4
veracode 4
redhat 15
gitlab 3
symantec 2
cgr 1
redhatcve 2
debiancve 2
ubuntucve 2
wolfi 1
rosalinux 1
oracle 1
ibm
ibm
Security Bulletin: Multiple vulenerabilities CVE-2019-0205, CVE-2019-0210 in thrift package
2019-12-20 08:47:33
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Apache Thrift
2023-05-02 22:53:35
Security Bulletin: IBM Resilient SOAR is Using Components with Known Vulnerabilities - Apache Thrift (CVE-2019-0205)
2020-08-31 21:46:03
nessus
nessus
GLSA-202107-32 : Apache Thrift: Multiple vulnerabilities
2022-01-24 00:00:00
EulerOS Virtualization 3.0.6.6 : thrift (EulerOS-SA-2021-1457)
2021-03-10 00:00:00
RHEL 6 / 8 : Red Hat JBoss Enterprise Application Platform 7.3 (RHSA-2020:0962)
2020-03-24 00:00:00
gentoo
gentoo
Apache Thrift: Multiple vulnerabilities
2021-07-14 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for thrift (EulerOS-SA-2021-1457)
2021-03-05 00:00:00
osv
osv
CVE-2019-12408
2019-11-08 19:15:10
Missing Initialization of Resource in Apache Arrow
2022-05-24 17:00:40
PYSEC-2019-195
2019-11-08 19:15:00
github
github
Missing Initialization of Resource in Apache Arrow
2022-05-24 17:00:40
Missing Initialization of Resource in Apache Arrow
2022-05-24 17:00:40
Out-of-bounds read in Apache Thrift
2021-05-18 15:32:04
prion
prion
Input validation
2019-11-08 19:15:00
Design/Logic Flaw
2019-11-08 19:15:00
Input validation
2019-10-29 19:15:00
cve
cve
CVE-2019-12408
2019-11-08 19:15:00
CVE-2019-12410
2019-11-08 19:15:00
CVE-2019-0210
2019-10-29 19:15:00
veracode
veracode
Information Disclosure
2019-11-18 02:20:54
Information Disclosure
2019-11-18 02:01:48
Denial Of Service (DoS)
2019-10-30 06:08:47
redhat
redhat
(RHSA-2020:0962) Important: Red Hat JBoss Enterprise Application Platform 7.3 security update
2020-03-24 11:07:40
(RHSA-2020:0961) Important: Red Hat JBoss Enterprise Application Platform 7.3 security update
2020-03-24 11:06:38
(RHSA-2020:0806) Important: Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 8 security update
2020-03-12 16:45:08
gitlab
gitlab
Out-of-bounds Read
2019-10-29 00:00:00
Out-of-bounds Read
2021-05-18 00:00:00
Loop with Unreachable Exit Condition (Infinite Loop)
2019-10-29 00:00:00
symantec
symantec
Apache Thrift CVE-2019-0210 Remote Security Vulnerability
2019-10-17 00:00:00
Apache Thrift CVE-2019-0205 Denial of Service Vulnerability
2019-10-16 00:00:00
cgr
cgr
CVE-2019-0205 vulnerabilities
2024-05-05 09:06:28
redhatcve
redhatcve
CVE-2019-0210
2021-08-08 12:08:24
CVE-2019-0205
2020-03-30 08:14:11
debiancve
debiancve
CVE-2019-0210
2019-10-29 19:15:00
CVE-2019-0205
2019-10-29 19:15:00
ubuntucve
ubuntucve
CVE-2019-0210
2019-10-29 00:00:00
CVE-2019-0205
2019-10-29 00:00:00
wolfi
wolfi
CVE-2019-0205 vulnerabilities
2024-05-05 09:06:29
rosalinux
rosalinux
Advisory ROSA-SA-2023-2270
2023-10-22 06:11:49
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON
Related for 75EECDFC779DA9FD1966C5DAD1AE11A16457B1CE376CB9360156AA150266966E
ibm11nessus9gentoo1openvas1osv11github4prion4cve4veracode4redhat15gitlab3symantec2cgr1redhatcve2debiancve2ubuntucve2wolfi1rosalinux1oracle1