Lucene search

K
ubuntucveUbuntu.comUB:CVE-2019-3016
HistoryJan 30, 2020 - 12:00 a.m.

CVE-2019-3016

2020-01-3000:00:00
ubuntu.com
ubuntu.com
5

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

17.2%

In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel
may be able to read memory locations from another process in the same
guest. This problem is limit to the host running linux kernel 4.10 with a
guest running linux kernel 4.16 or later. The problem mainly affects AMD
processors but Intel CPUs cannot be ruled out.

Notes

Author Note
tyhicks This issue does not affect default installations of Ubuntu as the paravirtual TLB flush feature in KVM is not enabled by default. The QEMU CPU feature “kvm-pv-tlb-flush” is used to enable paravirtual TLB flush.
cascardo It is thought that issue does not affect Intel processors not supporting Process-Context Identifiers (PCIDs). You can check support for PCIDs on systems with Intel processors by running “grep pcid /proc/cpuinfo” and verifying that “pcid” shows as one of the flags. it was mentioned that it was only easily reproducible on AMD CPUs.
Rows per page:
1-10 of 191

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

17.2%

Related for UB:CVE-2019-3016