Fedora 29 update for kernel, kernel-headers, kernel-tools, microcode_ctl
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 6 |
| CVE-ID | CVE-2018-12207 CVE-2019-0154 CVE-2019-0155 CVE-2019-11135 CVE-2019-0117 CVE-2019-11139 |
| CWE-ID | CWE-119 CWE-284 CWE-399 |
| Exploitation vector | Local network |
| Public exploit |
Public exploit code for vulnerability #2 is available. Public exploit code for vulnerability #4 is available. Public exploit code for vulnerability #5 is available. |
| Vulnerable software |
Fedora Operating systems & Components / Operating system microcode_ctl Operating systems & Components / Operating system package or component kernel-tools Operating systems & Components / Operating system package or component kernel-headers Operating systems & Components / Operating system package or component kernel Operating systems & Components / Operating system package or component |
| Vendor | Fedoraproject |
Security Bulletin
This security bulletin contains information about 6 vulnerabilities.
1) Buffer overflow
EUVDB-ID: #VU22712
Risk: Low
CVSSv4.0: 2.1 [CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-12207
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform denial of service (DoS) attack.
The vulnerability exists due to a boundary error in the mechanism responsible for error handling on some Intel platforms. A local user of a guest operating system can use a specially crafted application to trigger memory corruption and cause the host system to stop responding.
Successful exploitation of this vulnerability may result in a denial of service (DoS) attack.
Below is the list of processor families that are affected by this vulnerability:
Client:
- Intel Core i3 Processors
- Intel Core i5 Processors
- Intel Core i7 Processors
- Intel Core m Processor Family
- 2nd generation Intel Core Processors
- 3rd generation Intel Core Processors
- 4th generation Intel Core Processors
- 5th generation Intel Core Processors
- 6th generation Intel Core Processors
- 7th generation Intel Core Processors
- 8th generation Intel Core Processors
- Intel Core X-series Processor Family
- Intel Pentium Gold Processor Series
- Intel Celeron Processor G Series
Server:
- 2nd Generation Intel Xeon Scalable Processors
- Intel Xeon Scalable Processors
- Intel Xeon Processor E7 v4 Family
- Intel Xeon Processor E7 v3 Family
- Intel Xeon Processor E7 v2 Family
- Intel Xeon Processor E7 Family
- Intel Xeon Processor E5 v4 Family
- Intel Xeon Processor E5 v3 Family
- Intel Xeon Processor E5 v2 Family
- Intel Xeon Processor E5 Family
- Intel Xeon Processor E3 v6 Family
- Intel Xeon Processor E3 v5 Family
- Intel Xeon Processor E3 v4 Family
- Intel Xeon Processor E3 v3 Family
- Intel Xeon Processor E3 v2 Family
- Intel Xeon Processor E3 Family
- Intel Xeon E Processor
- Intel Xeon D Processor
- Intel Xeon W Processor
- Legacy Intel Xeon Processor
Install updates from vendor's repository.
Vulnerable software versionsFedora: 29
microcode_ctl: before 2.1-33.fc29
kernel-tools: before 5.3.11-100.fc29
kernel-headers: before 5.3.11-100.fc29
kernel: before 5.3.11-100.fc29
CPE2.3- cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:microcode_ctl:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-tools:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-headers:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel:*:*:*:*:*:fedora:*:*
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7a3fc17778
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper access control
EUVDB-ID: #VU22743
Risk: Low
CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2019-0154
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions. A local user with the ability to issue an ioctl can trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state and cause a denial of service (DoS) on the target system.
MitigationInstall updates from vendor's repository.
Vulnerable software versionsFedora: 29
microcode_ctl: before 2.1-33.fc29
kernel-tools: before 5.3.11-100.fc29
kernel-headers: before 5.3.11-100.fc29
kernel: before 5.3.11-100.fc29
CPE2.3- cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:microcode_ctl:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-tools:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-headers:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel:*:*:*:*:*:fedora:*:*
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7a3fc17778
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
3) Improper access control
EUVDB-ID: #VU22755
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2019-0155
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to improper access restrictions in Intel GPU subsystem. A local unprivileged user can perform blitter manipulation manipulation and write data to arbitrary location in kernel memory. As a result a local authenticated user can execute arbitrary code on the system with superuser privileges.
This vulnerability affects the following Intel products:
- 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families
- Intel(R) Pentium(R) Processor J, N, Silver and Gold Series
- Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series
- Intel(R) Atom(R) Processor A and E3900 Series
- Intel(R) Xeon(R) Processor E3-1500 v5 and v6, E-2100 and E-2200 Processor Families
- Intel(R) Graphics Driver for Windows before 26.20.100.6813 (DCH) or 26.20.100.6812 and before 21.20.x.5077 (aka15.45.5077)
- i915 Linux Driver for Intel(R) Processor Graphics before versions 5.4-rc7, 5.3.11, 4.19.84, 4.14.154, 4.9.201, 4.4.201
MitigationInstall updates from vendor's repository.
Vulnerable software versionsFedora: 29
microcode_ctl: before 2.1-33.fc29
kernel-tools: before 5.3.11-100.fc29
kernel-headers: before 5.3.11-100.fc29
kernel: before 5.3.11-100.fc29
CPE2.3- cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:microcode_ctl:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-tools:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-headers:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel:*:*:*:*:*:fedora:*:*
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7a3fc17778
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Resource management error
EUVDB-ID: #VU22704
Risk: Low
CVSSv4.0: 4.7 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2019-11135
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the TSX Asynchronous Abort (TAA) in Intel CPUs. The TAA condition, on some microprocessors utilizing speculative execution, may allow an authenticated user to potentially enable information disclosure via a side channel. MitigationInstall updates from vendor's repository.
Vulnerable software versionsFedora: 29
microcode_ctl: before 2.1-33.fc29
kernel-tools: before 5.3.11-100.fc29
kernel-headers: before 5.3.11-100.fc29
kernel: before 5.3.11-100.fc29
CPE2.3- cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:microcode_ctl:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-tools:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-headers:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel:*:*:*:*:*:fedora:*:*
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7a3fc17778
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
5) Improper access control
EUVDB-ID: #VU22781
Risk: Low
CVSSv4.0: 5.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2019-0117
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to improper access restrictions in protected memory subsystem for Intel(R) SGX for 6th, 7th, 8th, 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Xeon(R) Processor E3-1500 v5, v6 Families; Intel(R) Xeon(R) E-2100 & E-2200 Processor Families with Intel(R) Processor Graphics. A local user can gain access to sensitive information.
The following processor families are affected:
- 6th Generation Intel Core processors
- 7th Generation Intel Core processors
- 8th Generation Intel Core processors
- 9th Generation Intel Core processors
- Intel Xeon Processor E3 v5 Family
- Intel Xeon Processor E3 v6 Family
- Intel Xeon Processor E- 2100 Family
- Intel Xeon Processor E-2200 Family
Install updates from vendor's repository.
Vulnerable software versionsFedora: 29
microcode_ctl: before 2.1-33.fc29
kernel-tools: before 5.3.11-100.fc29
kernel-headers: before 5.3.11-100.fc29
kernel: before 5.3.11-100.fc29
CPE2.3- cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:microcode_ctl:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-tools:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-headers:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel:*:*:*:*:*:fedora:*:*
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7a3fc17778
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
6) Resource management error
EUVDB-ID: #VU22782
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2019-11139
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper conditions check in the voltage modulation interface for some Intel(R) Xeon(R) Scalable Processors. A local user can perform a denial of service attack.
The following Intel Xeon Scalable Processors are affected:
- Intel Xeon Platinum Processors: 8153, 8156, 8158, 8160, 8160F, 8160M, 8160T, 8164, 8168, 8170, 8170M, 8176, 8176F, 8176M, 8180, 8180M
- Intel
Xeon Gold Processors: 5115, 5118, 5119T, 5120, 5120T, 5122, 6126,
6126F, 6126T, 6128, 6130, 6130F, 6130T, 6132, 6134, 6134M, 6136, 6138,
6138F, 6138T, 6140, 6140M, 6142, 6142F, 6142M, 6144, 6146, 6148, 6148F,
6150, 6152, 6154
- Intel Xeon Silver Processors: 4108, 4109T, 4110, 4112, 4114, 4114T, 4116, 4116T
- Intel Xeon Bronze Processors: 3104, 3106
Install updates from vendor's repository.
Vulnerable software versionsFedora: 29
microcode_ctl: before 2.1-33.fc29
kernel-tools: before 5.3.11-100.fc29
kernel-headers: before 5.3.11-100.fc29
kernel: before 5.3.11-100.fc29
CPE2.3- cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:microcode_ctl:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-tools:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel-headers:*:*:*:*:*:fedora:*:*
- cpe:2.3:a:fedoraproject:kernel:*:*:*:*:*:fedora:*:*
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7a3fc17778
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
