Lucene search
Ubuntu Security Notice (C) 2020-2024 Canonical, Inc. / NASL script (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-4253-1.NASLHistoryJan 28, 2020 - 12:00 a.m.
Ubuntu 19.10 : Linux kernel vulnerability (USN-4253-1)
2020-01-2800:00:00
Ubuntu Security Notice (C) 2020-2024 Canonical, Inc. / NASL script (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
27
6 Medium
AI Score
Confidence
High
It was discovered that the Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.
A local attacker could use this to expose sensitive information.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-4253-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('compat.inc');
if (description)
{
script_id(133292);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/28");
script_cve_id("CVE-2019-14615");
script_xref(name:"USN", value:"4253-1");
script_name(english:"Ubuntu 19.10 : Linux kernel vulnerability (USN-4253-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security-related
patches.");
script_set_attribute(attribute:"description", value:
"It was discovered that the Linux kernel did not properly clear data
structures on context switches for certain Intel graphics processors.
A local attacker could use this to expose sensitive information.
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://usn.ubuntu.com/4253-1/");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-14615");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/01/17");
script_set_attribute(attribute:"patch_publication_date", value:"2020/01/28");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/01/28");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-aws");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic-lpae");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-lowlatency");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-snapdragon");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:19.10");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2020-2024 Canonical, Inc. / NASL script (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("ubuntu.inc");
include("ksplice.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(19\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 19.10", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
rm_kb_item(name:"Host/uptrack-uname-r");
cve_list = make_list("CVE-2019-14615");
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for USN-4253-1");
}
else
{
_ubuntu_report = ksplice_reporting_text();
}
}
var flag = 0;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-5.3.0-1010-aws", pkgver:"5.3.0-1010.11")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-5.3.0-29-generic", pkgver:"5.3.0-29.31")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-5.3.0-29-generic-lpae", pkgver:"5.3.0-29.31")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-5.3.0-29-lowlatency", pkgver:"5.3.0-29.31")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-5.3.0-29-snapdragon", pkgver:"5.3.0-29.31")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-aws", pkgver:"5.3.0.1010.12")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-generic", pkgver:"5.3.0.29.33")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-generic-lpae", pkgver:"5.3.0.29.33")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-lowlatency", pkgver:"5.3.0.29.33")) flag++;
if (ubuntu_check(osver:"19.10", pkgname:"linux-image-virtual", pkgver:"5.3.0.29.33")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_NOTE,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-5.3-aws / linux-image-5.3-generic / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | linux-image-5.3-aws | p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-aws |
| canonical | ubuntu_linux | linux-image-5.3-generic | p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic |
| canonical | ubuntu_linux | linux-image-5.3-generic-lpae | p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic-lpae |
| canonical | ubuntu_linux | linux-image-5.3-lowlatency | p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-lowlatency |
| canonical | ubuntu_linux | linux-image-5.3-snapdragon | p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-snapdragon |
| canonical | ubuntu_linux | linux-image-aws | p-cpe:/a:canonical:ubuntu_linux:linux-image-aws |
| canonical | ubuntu_linux | linux-image-generic | p-cpe:/a:canonical:ubuntu_linux:linux-image-generic |
| canonical | ubuntu_linux | linux-image-generic-lpae | p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae |
| canonical | ubuntu_linux | linux-image-lowlatency | p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency |
| canonical | ubuntu_linux | linux-image-virtual | p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual |
Related
hp
hp
HPSBHF03652 rev.3 - Intelยฎ Processor Graphics January 2020 Security Update
2020-02-12 00:00:00
intel
intel
Intelยฎ Processor Graphics Advisory
2020-01-29 00:00:00
cve
cve
CVE-2019-14615
2020-01-17 18:15:00
CVE-2020-8832
2020-04-10 00:15:00
debiancve
debiancve
CVE-2019-14615
2020-01-17 18:15:00
CVE-2020-8832
2020-04-10 00:15:00
lenovo
lenovo
Intel Processor Graphics Vulnerability - Lenovo Support US
2020-01-10 05:04:41
Intel Processor Graphics Vulnerability - Lenovo Support US
2020-01-10 05:04:41
openvas
openvas
Ubuntu: Security Advisory for linux-hwe (USN-4253-2)
2020-01-29 00:00:00
Ubuntu: Security Advisory for linux (USN-4253-1)
2020-01-29 00:00:00
Ubuntu: Security Advisory for linux-aws-hwe (USN-4255-2)
2020-01-29 00:00:00
prion
prion
Buffer overflow
2020-01-17 18:15:00
Information disclosure
2020-04-10 00:15:00
nessus
nessus
FreeBSD : drm graphics drivers -- potential information disclusure via local access (d2c2c815-3793-11ea-8be3-54e1ad3d6335)
2020-01-16 00:00:00
Ubuntu 18.04 LTS : Linux kernel (HWE) vulnerability (USN-4253-2)
2020-01-30 00:00:00
Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4255-1)
2020-01-28 00:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Canonical Ubuntu Linux
2020-01-18 08:23:46
ubuntucve
ubuntucve
CVE-2019-14615
2020-01-14 00:00:00
CVE-2020-8832
2020-03-05 00:00:00
veracode
veracode
Information Disclosure
2021-11-17 22:36:14
ubuntu
ubuntu
Linux kernel vulnerability
2020-01-28 00:00:00
Linux kernel (HWE) vulnerability
2020-01-28 00:00:00
Linux kernel (HWE) vulnerabilities
2020-01-28 00:00:00
redhatcve
redhatcve
CVE-2019-14615
2020-04-04 17:27:55
CVE-2020-8832
2020-03-30 14:31:52
freebsd
freebsd
drm graphics drivers -- potential information disclusure via local access
2020-01-14 00:00:00
cloudfoundry
cloudfoundry
USN-4255-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry
2020-02-12 00:00:00
USN-4302-1: Linux kernel vulnerabilities | Cloud Foundry
2020-04-23 00:00:00
USN-4287-1: Linux kernel vulnerabilities | Cloud Foundry
2020-03-10 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2020-01-17 13:16:50
Updated kernel-linus packages fix security vulnerabilities
2020-02-18 17:05:53
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2020-03-15 00:00:00
f5
f5
K22526232 : Multiple Intel software vulnerabilities
2020-01-16 00:00:00
threatpost
threatpost
Intel Fixes High-Severity Flaw in Performance Analysis Tool
2020-01-14 21:00:28
Apple Update Fixes WebKit Flaws in iOS, Safari
2020-03-25 21:07:25
cloudlinux
cloudlinux
Fix of 13 CVEs
2022-04-21 21:21:15
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2020-03-26 23:13:28
suse
suse
Security update for the Linux Kernel (important)
2020-03-13 00:00:00
apple
apple
redhat
redhat
(RHSA-2021:4140) Moderate: kernel-rt security and bug fix update
2021-11-09 08:21:02
(RHSA-2021:4356) Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
osv
osv
Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
linux-4.9 - security update
2020-02-21 00:00:00
debian
debian
[SECURITY] [DLA 2114-1] linux-4.9 security update
2020-03-02 18:14:56