Lucene search

K
ubuntucveUbuntu.comUB:CVE-2019-19332
HistoryJan 09, 2020 - 12:00 a.m.

CVE-2019-19332

2020-01-0900:00:00
ubuntu.com
ubuntu.com
21
linux kernel
kvm hypervisor
'kvm_get_emulated_cpuid' ioctl
denial of service

CVSS2

5.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:P/A:C

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

EPSS

0.001

Percentile

28.6%

An out-of-bounds memory write issue was found in the Linux Kernel, version
3.13 through 5.4, in the way the Linux kernel’s KVM hypervisor handled the
‘KVM_GET_EMULATED_CPUID’ ioctl(2) request to get CPUID features emulated by
the KVM hypervisor. A user or process able to access the ‘/dev/kvm’ device
could use this flaw to crash the system, resulting in a denial of service.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-88.88UNKNOWN
ubuntu19.10noarchlinux< 5.3.0-40.32UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-173.203UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1060.62UNKNOWN
ubuntu19.10noarchlinux-aws< 5.3.0-1011.12UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1061.65UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1101.112UNKNOWN
ubuntu18.04noarchlinux-aws-5.0< 5.0.0-1024.27~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1060.62~16.04.1UNKNOWN
ubuntu18.04noarchlinux-azure< 5.0.0-1029.31~18.04.1UNKNOWN
Rows per page:
1-10 of 401

CVSS2

5.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:P/A:C

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

EPSS

0.001

Percentile

28.6%