7.8

CVE-2019-14835

Exploit
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.6.34 < 3.16.74
LinuxLinux Kernel Version >= 4.4 < 4.4.193
LinuxLinux Kernel Version >= 4.9 < 4.9.193
LinuxLinux Kernel Version >= 4.14 < 4.14.144
LinuxLinux Kernel Version >= 4.19 < 4.19.73
LinuxLinux Kernel Version >= 5.2 < 5.2.15
LinuxLinux Kernel Version5.3
CanonicalUbuntu Linux Version12.04 SwEdition-
CanonicalUbuntu Linux Version14.04 SwEditionesm
CanonicalUbuntu Linux Version16.04 SwEditionesm
CanonicalUbuntu Linux Version18.04 SwEditionlts
CanonicalUbuntu Linux Version19.04
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
DebianDebian Linux Version10.0
FedoraprojectFedora Version29
FedoraprojectFedora Version30
OpensuseLeap Version15.0
OpensuseLeap Version15.1
NetappAff A700s Firmware Version-
   NetappAff A700s
NetappH410c Firmware Version-
   NetappH410c
NetappH610s Firmware Version-
   NetappH610s
NetappH300s Firmware Version-
   NetappH300s
NetappH500s Firmware Version-
   NetappH500s
NetappH700s Firmware Version-
   NetappH700s
NetappH300e Firmware Version-
   NetappH300e
NetappH500e Firmware Version-
   NetappH500e
NetappH700e Firmware Version-
   NetappH700e
NetappH410s Firmware Version-
   NetappH410s
NetappService Processor Version-
NetappSolidfire Version-
RedhatEnterprise Linux Version8.0
RedhatEnterprise Linux Eus Version7.5
RedhatEnterprise Linux Eus Version7.6
RedhatEnterprise Linux Eus Version7.7
RedhatVirtualization Version4.0
   RedhatEnterprise Linux Version7.0
RedhatVirtualization Host Version4.0
   RedhatEnterprise Linux Version7.0
HuaweiImanager Neteco Versionv600r009c00
HuaweiImanager Neteco Versionv600r009c10spc200
HuaweiImanager Neteco 6000 Versionv600r008c10spc300
HuaweiImanager Neteco 6000 Versionv600r008c20
HuaweiManageone Version6.5.0
HuaweiManageone Version6.5.0.spc100.b210
HuaweiManageone Version6.5.1rc1.b060
HuaweiManageone Version6.5.1rc1.b080
HuaweiManageone Version6.5.rc2.b050
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.63% 0.453
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
secalert@redhat.com 7.2 0.6 6
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

https://access.redhat.com/errata/RHBA-2019:2824
Third Party Advisory
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
Third Party Advisory
VDB Entry
https://seclists.org/bugtraq/2019/Nov/11
Third Party Advisory
Mailing List
Issue Tracking
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html
Third Party Advisory
VDB Entry
https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2019/10/msg00000.html
Third Party Advisory
Mailing List
https://seclists.org/bugtraq/2019/Sep/41
Third Party Advisory
Mailing List
Issue Tracking
https://www.debian.org/security/2019/dsa-4531
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2899
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2900
Third Party Advisory
https://usn.ubuntu.com/4135-1/
Third Party Advisory
https://usn.ubuntu.com/4135-2/
Third Party Advisory
http://packetstormsecurity.com/files/154572/Kernel-Live-Patch-Security-Notice-LSN-0056-1.html
Third Party Advisory
VDB Entry
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-qemu-en
Third Party Advisory
http://www.openwall.com/lists/oss-security/2019/09/24/1
Mailing List
http://www.openwall.com/lists/oss-security/2019/10/03/1
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2019/10/09/3
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2019/10/09/7
Third Party Advisory
Mailing List
https://access.redhat.com/errata/RHSA-2019:2827
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2828
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2829
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2830
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2854
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2862
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2863
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2864
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2865
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2866
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2867
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2869
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2889
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2901
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2924
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14835
Patch
Third Party Advisory
Issue Tracking
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQFY6JYFIQ2VFQ7QCSXPWTUL5ZDNCJL5/
Mailing List
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YW3QNMPENPFEGVTOFPSNOBL7JEIJS25P/
Mailing List
https://security.netapp.com/advisory/ntap-20191031-0005/
Third Party Advisory
https://www.openwall.com/lists/oss-security/2019/09/17/1
Patch
Third Party Advisory
Exploit
Mailing List