ID

VAR-201909-0695


CVE

CVE-2019-14835


TITLE

Linux Kernel Vulnerable to classic buffer overflow

Trust: 0.8

sources: JVNDB: JVNDB-2019-009455

DESCRIPTION

A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host. Linux Kernel Contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2019:2900-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:2900 Issue date: 2019-09-25 CVE Names: CVE-2019-1125 CVE-2019-14835 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 7.3) - noarch, x86_64 Red Hat Enterprise Linux Server E4S (v. 7.3) - noarch, ppc64le, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.3) - x86_64 Red Hat Enterprise Linux Server Optional E4S (v. 7.3) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional TUS (v. 7.3) - x86_64 Red Hat Enterprise Linux Server TUS (v. 7.3) - noarch, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. (CVE-2019-14835) * kernel: hw: Spectre SWAPGS gadget vulnerability (CVE-2019-1125) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * fs deadlock when a memory allocation waits on page writeback in NOFS context (BZ#1729105) * fragmented packets timing out (BZ#1729410) * kernel build: speed up debuginfo extraction (BZ#1731461) * use "make -jN" for modules_install (BZ#1735080) * shmem: consider shm_mnt as a long-term mount (BZ#1737375) * Backport TCP follow-up for small buffers (BZ#1739126) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1724389 - CVE-2019-1125 kernel: hw: Spectre SWAPGS gadget vulnerability 1750727 - CVE-2019-14835 kernel: vhost-net: guest to host kernel escape during migration 6. Package List: Red Hat Enterprise Linux Server AUS (v. 7.3): Source: kernel-3.10.0-514.69.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-514.69.1.el7.noarch.rpm kernel-doc-3.10.0-514.69.1.el7.noarch.rpm x86_64: kernel-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-514.69.1.el7.x86_64.rpm kernel-devel-3.10.0-514.69.1.el7.x86_64.rpm kernel-headers-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-514.69.1.el7.x86_64.rpm perf-3.10.0-514.69.1.el7.x86_64.rpm perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm python-perf-3.10.0-514.69.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm Red Hat Enterprise Linux Server E4S (v. 7.3): Source: kernel-3.10.0-514.69.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-514.69.1.el7.noarch.rpm kernel-doc-3.10.0-514.69.1.el7.noarch.rpm ppc64le: kernel-3.10.0-514.69.1.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-514.69.1.el7.ppc64le.rpm kernel-debug-3.10.0-514.69.1.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-514.69.1.el7.ppc64le.rpm kernel-devel-3.10.0-514.69.1.el7.ppc64le.rpm kernel-headers-3.10.0-514.69.1.el7.ppc64le.rpm kernel-tools-3.10.0-514.69.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm kernel-tools-libs-3.10.0-514.69.1.el7.ppc64le.rpm perf-3.10.0-514.69.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm python-perf-3.10.0-514.69.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm x86_64: kernel-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-514.69.1.el7.x86_64.rpm kernel-devel-3.10.0-514.69.1.el7.x86_64.rpm kernel-headers-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-514.69.1.el7.x86_64.rpm perf-3.10.0-514.69.1.el7.x86_64.rpm perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm python-perf-3.10.0-514.69.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm Red Hat Enterprise Linux Server TUS (v. 7.3): Source: kernel-3.10.0-514.69.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-514.69.1.el7.noarch.rpm kernel-doc-3.10.0-514.69.1.el7.noarch.rpm x86_64: kernel-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-514.69.1.el7.x86_64.rpm kernel-devel-3.10.0-514.69.1.el7.x86_64.rpm kernel-headers-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-514.69.1.el7.x86_64.rpm perf-3.10.0-514.69.1.el7.x86_64.rpm perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm python-perf-3.10.0-514.69.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 7.3): x86_64: kernel-debug-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-514.69.1.el7.x86_64.rpm perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional E4S (v. 7.3): ppc64le: kernel-debug-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm kernel-debug-devel-3.10.0-514.69.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-514.69.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-514.69.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.ppc64le.rpm x86_64: kernel-debug-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-514.69.1.el7.x86_64.rpm perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional TUS (v. 7.3): x86_64: kernel-debug-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-514.69.1.el7.x86_64.rpm perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-514.69.1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-1125 https://access.redhat.com/security/cve/CVE-2019-14835 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/articles/4329821 https://access.redhat.com/security/vulnerabilities/kernel-vhost 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXYtc3tzjgjWX9erEAQhLbQ/9He4EewP2oLmpSD+YgwrsmicC0tkXAwHQ mewfO+F8Km5VbKeBTvUg3tt0H2xCepbKMD0/zl1TgElv1+HD1Gfy8Wp6be9+2O07 ysbx9TVAS8+dpsvyunkdLUms3qyqH9DPNLwkv0oxicOUgW9wyS0k+icp2vi2D6ru rHGbIciOf3adLlnebmTAS0VRyw9rPbOnsDHnM3Nt092K7HqWrnsbWXSNxo9swPwO fyjKy7ww9hEMbcbrS5TCXPpgCGPayFPYu6usIWHe4vanC2zu9bLKf3NQVmQLgfa5 5Of1vIHkRh2PhFKRNKLzIrdZdgDZ/dVFBJCVqyaWdMNW/lazaLjC7GK3lMXgOp+j bUktXaPe6Wrb1qdJZvGDnaJ8wjMUnoBNt2qvCszQHy/hw3Mu/tZVt0SM29JB669k VXJp+T/vbEBz6XR9lfL/9kGsEkjYY7KfFRg+2AUn/jzf+NiEJPdeXTHo1d22WADK lIgsa1KRqxGHx92LpPGh7Qufv7CtM1X70x7eddYY1yFwKbQe5sZjpD8wKChw+zDx ziz1up8tE9nFNGkT0EurprzoEvUHEva1Ex2ntM8wE5SKQDOHo23yiB/cB59W1W+T 6FIFf+ezOO8Cuz6XTuF6dhr1eG6yN1KrrVoYoHlIvsK6Fep7rn2/lLPslXXPT41n HdBiOekTEfs\xe8Qk -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . 7.5) - ppc64, ppc64le, x86_64 3. (CVE-2019-14835) 4. 7) - aarch64, noarch, ppc64le 3. ========================================================================= Ubuntu Security Notice USN-4135-2 September 18, 2019 linux, linux-aws, linux-azure, linux-lts-trusty, linux-lts-xenial vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 ESM - Ubuntu 12.04 ESM Summary: Several security issues were fixed in the Linux kernel. (CVE-2019-14835) It was discovered that the Linux kernel on PowerPC architectures did not properly handle Facility Unavailable exceptions in some situations. A local attacker could use this to expose sensitive information. (CVE-2019-15030) It was discovered that the Linux kernel on PowerPC architectures did not properly handle exceptions on interrupts in some situations. A local attacker could use this to expose sensitive information. (CVE-2019-15031) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM: linux-image-3.13.0-173-generic 3.13.0-173.224 linux-image-3.13.0-173-generic-lpae 3.13.0-173.224 linux-image-3.13.0-173-lowlatency 3.13.0-173.224 linux-image-3.13.0-173-powerpc-e500 3.13.0-173.224 linux-image-3.13.0-173-powerpc-e500mc 3.13.0-173.224 linux-image-3.13.0-173-powerpc-smp 3.13.0-173.224 linux-image-3.13.0-173-powerpc64-emb 3.13.0-173.224 linux-image-3.13.0-173-powerpc64-smp 3.13.0-173.224 linux-image-4.15.0-1059-azure 4.15.0-1059.64~14.04.1 linux-image-4.4.0-1054-aws 4.4.0-1054.58 linux-image-4.4.0-164-generic 4.4.0-164.192~14.04.1 linux-image-4.4.0-164-generic-lpae 4.4.0-164.192~14.04.1 linux-image-4.4.0-164-lowlatency 4.4.0-164.192~14.04.1 linux-image-4.4.0-164-powerpc-e500mc 4.4.0-164.192~14.04.1 linux-image-4.4.0-164-powerpc-smp 4.4.0-164.192~14.04.1 linux-image-4.4.0-164-powerpc64-emb 4.4.0-164.192~14.04.1 linux-image-4.4.0-164-powerpc64-smp 4.4.0-164.192~14.04.1 linux-image-aws 4.4.0.1054.55 linux-image-azure 4.15.0.1059.45 linux-image-generic 3.13.0.173.184 linux-image-generic-lpae 3.13.0.173.184 linux-image-generic-lpae-lts-xenial 4.4.0.164.143 linux-image-generic-lts-xenial 4.4.0.164.143 linux-image-lowlatency 3.13.0.173.184 linux-image-lowlatency-lts-xenial 4.4.0.164.143 linux-image-powerpc-e500 3.13.0.173.184 linux-image-powerpc-e500mc 3.13.0.173.184 linux-image-powerpc-e500mc-lts-xenial 4.4.0.164.143 linux-image-powerpc-smp 3.13.0.173.184 linux-image-powerpc-smp-lts-xenial 4.4.0.164.143 linux-image-powerpc64-emb 3.13.0.173.184 linux-image-powerpc64-emb-lts-xenial 4.4.0.164.143 linux-image-powerpc64-smp 3.13.0.173.184 linux-image-powerpc64-smp-lts-xenial 4.4.0.164.143 linux-image-server 3.13.0.173.184 linux-image-virtual 3.13.0.173.184 linux-image-virtual-lts-xenial 4.4.0.164.143 Ubuntu 12.04 ESM: linux-image-3.13.0-173-generic 3.13.0-173.224~12.04.1 linux-image-3.13.0-173-generic-lpae 3.13.0-173.224~12.04.1 linux-image-3.13.0-173-lowlatency 3.13.0-173.224~12.04.1 linux-image-3.2.0-143-generic 3.2.0-143.190 linux-image-3.2.0-143-generic-pae 3.2.0-143.190 linux-image-3.2.0-143-highbank 3.2.0-143.190 linux-image-3.2.0-143-omap 3.2.0-143.190 linux-image-3.2.0-143-powerpc-smp 3.2.0-143.190 linux-image-3.2.0-143-powerpc64-smp 3.2.0-143.190 linux-image-3.2.0-143-virtual 3.2.0-143.190 linux-image-generic 3.2.0.143.158 linux-image-generic-lpae-lts-trusty 3.13.0.173.161 linux-image-generic-lts-trusty 3.13.0.173.161 linux-image-generic-pae 3.2.0.143.158 linux-image-highbank 3.2.0.143.158 linux-image-omap 3.2.0.143.158 linux-image-powerpc 3.2.0.143.158 linux-image-powerpc-smp 3.2.0.143.158 linux-image-powerpc64-smp 3.2.0.143.158 linux-image-server 3.2.0.143.158 linux-image-virtual 3.2.0.143.158 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. (CVE-2019-14835) Update instructions: The problem can be corrected by updating your livepatches to the following versions: | Kernel | Version | flavors | |--------------------------+----------+--------------------------| | 4.4.0-148.174 | 56.1 | lowlatency, generic | | 4.4.0-150.176 | 56.1 | generic, lowlatency | | 4.4.0-151.178 | 56.1 | lowlatency, generic | | 4.4.0-154.181 | 56.1 | lowlatency, generic | | 4.4.0-157.185 | 56.1 | lowlatency, generic | | 4.4.0-159.187 | 56.1 | lowlatency, generic | | 4.4.0-161.189 | 56.1 | lowlatency, generic | | 4.15.0-50.54 | 56.1 | generic, lowlatency | | 4.15.0-50.54~16.04.1 | 56.1 | generic, lowlatency | | 4.15.0-51.55 | 56.1 | generic, lowlatency | | 4.15.0-51.55~16.04.1 | 56.1 | generic, lowlatency | | 4.15.0-52.56 | 56.1 | lowlatency, generic | | 4.15.0-52.56~16.04.1 | 56.1 | generic, lowlatency | | 4.15.0-54.58 | 56.1 | generic, lowlatency | | 4.15.0-54.58~16.04.1 | 56.1 | generic, lowlatency | | 4.15.0-55.60 | 56.1 | generic, lowlatency | | 4.15.0-58.64 | 56.1 | generic, lowlatency | | 4.15.0-58.64~16.04.1 | 56.1 | lowlatency, generic | | 4.15.0-60.67 | 56.1 | lowlatency, generic | | 4.15.0-60.67~16.04.1 | 56.1 | generic, lowlatency | | 4.15.0-62.69 | 56.1 | generic, lowlatency | | 4.15.0-62.69~16.04.1 | 56.1 | lowlatency, generic | Support Information: Kernels older than the levels listed below do not receive livepatch updates. Please upgrade your kernel as soon as possible. | Series | Version | Flavors | |------------------+------------------+--------------------------| | Ubuntu 18.04 LTS | 4.15.0-50 | generic lowlatency | | Ubuntu 16.04 LTS | 4.15.0-50 | generic lowlatency | | Ubuntu 14.04 LTS | 4.4.0-148 | generic lowlatency | | Ubuntu 16.04 LTS | 4.4.0-148 | generic lowlatency | References: CVE-2019-14835 -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce . Description: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements

Trust: 2.34

sources: NVD: CVE-2019-14835 // JVNDB: JVNDB-2019-009455 // VULHUB: VHN-146821 // PACKETSTORM: 154514 // PACKETSTORM: 154608 // PACKETSTORM: 154565 // PACKETSTORM: 154562 // PACKETSTORM: 154513 // PACKETSTORM: 154572 // PACKETSTORM: 154540

AFFECTED PRODUCTS

vendor:huaweimodel:manageonescope:eqversion:6.5.1rc1.b060

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:4.9.193

Trust: 1.0

vendor:redhatmodel:enterprise linux eusscope:eqversion:7.7

Trust: 1.0

vendor:redhatmodel:enterprise linux server ausscope:eqversion:7.6

Trust: 1.0

vendor:redhatmodel:enterprise linux server ausscope:eqversion:7.2

Trust: 1.0

vendor:redhatmodel:enterprise linux serverscope:eqversion:7.0

Trust: 1.0

vendor:huaweimodel:manageonescope:eqversion:6.5.rc2.b050

Trust: 1.0

vendor:netappmodel:h300escope:eqversion: -

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:4.14

Trust: 1.0

vendor:redhatmodel:enterprise linux workstationscope:eqversion:7.0

Trust: 1.0

vendor:netappmodel:h610sscope:eqversion: -

Trust: 1.0

vendor:netappmodel:service processorscope:eqversion: -

Trust: 1.0

vendor:redhatmodel:enterprise linux server tusscope:eqversion:7.2

Trust: 1.0

vendor:redhatmodel:enterprise linux for real timescope:eqversion:7

Trust: 1.0

vendor:redhatmodel:enterprise linux server tusscope:eqversion:7.7

Trust: 1.0

vendor:redhatmodel:virtualizationscope:eqversion:4.0

Trust: 1.0

vendor:canonicalmodel:ubuntu linuxscope:eqversion:12.04

Trust: 1.0

vendor:netappmodel:h300sscope:eqversion: -

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:4.4.193

Trust: 1.0

vendor:redhatmodel:enterprise linux server ausscope:eqversion:7.4

Trust: 1.0

vendor:netappmodel:steelstore cloud integrated storagescope:eqversion: -

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:2.6.34

Trust: 1.0

vendor:huaweimodel:imanager netecoscope:eqversion:v600r009c10spc200

Trust: 1.0

vendor:huaweimodel:manageonescope:eqversion:6.5.1rc1.b080

Trust: 1.0

vendor:canonicalmodel:ubuntu linuxscope:eqversion:14.04

Trust: 1.0

vendor:redhatmodel:enterprise linux server tusscope:eqversion:7.3

Trust: 1.0

vendor:redhatmodel:enterprise linux eusscope:eqversion:7.6

Trust: 1.0

vendor:redhatmodel:enterprise linux server ausscope:eqversion:6.6

Trust: 1.0

vendor:debianmodel:linuxscope:eqversion:9.0

Trust: 1.0

vendor:netappmodel:aff a700sscope:eqversion: -

Trust: 1.0

vendor:debianmodel:linuxscope:eqversion:8.0

Trust: 1.0

vendor:netappmodel:h500escope:eqversion: -

Trust: 1.0

vendor:redhatmodel:enterprise linuxscope:eqversion:8.0

Trust: 1.0

vendor:redhatmodel:enterprise linux workstationscope:eqversion:6.0

Trust: 1.0

vendor:canonicalmodel:ubuntu linuxscope:eqversion:16.04

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.2

Trust: 1.0

vendor:redhatmodel:enterprise linux server ausscope:eqversion:6.5

Trust: 1.0

vendor:netappmodel:h500sscope:eqversion: -

Trust: 1.0

vendor:netappmodel:solidfirescope:eqversion: -

Trust: 1.0

vendor:huaweimodel:imanager netecoscope:eqversion:v600r009c00

Trust: 1.0

vendor:redhatmodel:enterprise linux desktopscope:eqversion:6.0

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:4.14.144

Trust: 1.0

vendor:fedoraprojectmodel:fedorascope:eqversion:30

Trust: 1.0

vendor:huaweimodel:manageonescope:eqversion:6.5.0

Trust: 1.0

vendor:canonicalmodel:ubuntu linuxscope:eqversion:18.04

Trust: 1.0

vendor:redhatmodel:enterprise linux server tusscope:eqversion:7.6

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:4.19

Trust: 1.0

vendor:redhatmodel:openshift container platformscope:eqversion:3.11

Trust: 1.0

vendor:fedoraprojectmodel:fedorascope:eqversion:29

Trust: 1.0

vendor:huaweimodel:imanager neteco 6000scope:eqversion:v600r008c20

Trust: 1.0

vendor:huaweimodel:imanager neteco 6000scope:eqversion:v600r008c10spc300

Trust: 1.0

vendor:redhatmodel:enterprise linux server ausscope:eqversion:7.7

Trust: 1.0

vendor:debianmodel:linuxscope:eqversion:10.0

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:4.19.73

Trust: 1.0

vendor:redhatmodel:enterprise linux eusscope:eqversion:7.5

Trust: 1.0

vendor:netappmodel:h700escope:eqversion: -

Trust: 1.0

vendor:opensusemodel:leapscope:eqversion:15.1

Trust: 1.0

vendor:netappmodel:h410cscope:eqversion: -

Trust: 1.0

vendor:redhatmodel:enterprise linux desktopscope:eqversion:7.0

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.2.15

Trust: 1.0

vendor:netappmodel:h410sscope:eqversion: -

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:4.9

Trust: 1.0

vendor:netappmodel:data availability servicesscope:eqversion: -

Trust: 1.0

vendor:redhatmodel:enterprise linux for real timescope:eqversion:8

Trust: 1.0

vendor:netappmodel:h700sscope:eqversion: -

Trust: 1.0

vendor:linuxmodel:kernelscope:eqversion:5.3

Trust: 1.0

vendor:redhatmodel:enterprise linux server ausscope:eqversion:7.3

Trust: 1.0

vendor:redhatmodel:enterprise linux server tusscope:eqversion:7.4

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:4.4

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:3.16.74

Trust: 1.0

vendor:canonicalmodel:ubuntu linuxscope:eqversion:19.04

Trust: 1.0

vendor:opensusemodel:leapscope:eqversion:15.0

Trust: 1.0

vendor:redhatmodel:virtualization hostscope:eqversion:4.0

Trust: 1.0

vendor:huaweimodel:manageonescope:eqversion:6.5.0.spc100.b210

Trust: 1.0

vendor:netappmodel:hci management nodescope:eqversion: -

Trust: 1.0

vendor:redhatmodel:enterprise linux serverscope:eqversion:6.0

Trust: 1.0

vendor:redhatmodel:enterprise linux serverscope:eqversion:7.6

Trust: 1.0

vendor:canonicalmodel:ubuntuscope: - version: -

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:2.6.34 to 5.2.x

Trust: 0.8

vendor:red hatmodel:enterprise linuxscope: - version: -

Trust: 0.8

vendor:red hatmodel:virtualizationscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2019-009455 // NVD: CVE-2019-14835

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-14835
value: HIGH

Trust: 1.0

secalert@redhat.com: CVE-2019-14835
value: HIGH

Trust: 1.0

NVD: CVE-2019-14835
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201909-807
value: HIGH

Trust: 0.6

VULHUB: VHN-146821
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2019-14835
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-146821
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-14835
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.1

Trust: 1.0

secalert@redhat.com: CVE-2019-14835
baseSeverity: HIGH
baseScore: 7.2
vectorString: CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: HIGH
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.6
impactScore: 6.0
version: 3.0

Trust: 1.0

NVD: CVE-2019-14835
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-146821 // JVNDB: JVNDB-2019-009455 // CNNVD: CNNVD-201909-807 // NVD: CVE-2019-14835 // NVD: CVE-2019-14835

PROBLEMTYPE DATA

problemtype:CWE-120

Trust: 1.9

sources: VULHUB: VHN-146821 // JVNDB: JVNDB-2019-009455 // NVD: CVE-2019-14835

THREAT TYPE

local

Trust: 0.8

sources: PACKETSTORM: 154514 // PACKETSTORM: 154513 // CNNVD: CNNVD-201909-807

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201909-807

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-009455

PATCH

title:Linux Kernel Archivesurl:http://www.kernel.org

Trust: 0.8

title:Bug 1750727url:https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14835

Trust: 0.8

title:USN-4135-2url:https://usn.ubuntu.com/4135-2/

Trust: 0.8

title:Linux kernel Security vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=98340

Trust: 0.6

sources: JVNDB: JVNDB-2019-009455 // CNNVD: CNNVD-201909-807

EXTERNAL IDS

db:NVDid:CVE-2019-14835

Trust: 3.2

db:OPENWALLid:OSS-SECURITY/2019/09/17/1

Trust: 2.5

db:PACKETSTORMid:154572

Trust: 1.8

db:PACKETSTORMid:155212

Trust: 1.7

db:PACKETSTORMid:154951

Trust: 1.7

db:OPENWALLid:OSS-SECURITY/2019/10/03/1

Trust: 1.7

db:OPENWALLid:OSS-SECURITY/2019/10/09/7

Trust: 1.7

db:OPENWALLid:OSS-SECURITY/2019/09/24/1

Trust: 1.7

db:OPENWALLid:OSS-SECURITY/2019/10/09/3

Trust: 1.7

db:PACKETSTORMid:154514

Trust: 0.8

db:JVNDBid:JVNDB-2019-009455

Trust: 0.8

db:PACKETSTORMid:154558

Trust: 0.7

db:CNNVDid:CNNVD-201909-807

Trust: 0.7

db:AUSCERTid:ESB-2019.4584

Trust: 0.6

db:AUSCERTid:ESB-2020.0141

Trust: 0.6

db:AUSCERTid:ESB-2019.4252

Trust: 0.6

db:AUSCERTid:ESB-2020.0270

Trust: 0.6

db:AUSCERTid:ESB-2019.4261

Trust: 0.6

db:AUSCERTid:ESB-2019.3536

Trust: 0.6

db:AUSCERTid:ESB-2019.4346

Trust: 0.6

db:AUSCERTid:ESB-2019.4346.2

Trust: 0.6

db:PACKETSTORMid:154513

Trust: 0.2

db:PACKETSTORMid:154562

Trust: 0.2

db:PACKETSTORMid:154540

Trust: 0.2

db:PACKETSTORMid:154565

Trust: 0.2

db:PACKETSTORMid:154539

Trust: 0.1

db:PACKETSTORMid:154538

Trust: 0.1

db:PACKETSTORMid:154570

Trust: 0.1

db:PACKETSTORMid:154602

Trust: 0.1

db:PACKETSTORMid:154566

Trust: 0.1

db:PACKETSTORMid:154563

Trust: 0.1

db:PACKETSTORMid:154564

Trust: 0.1

db:PACKETSTORMid:154541

Trust: 0.1

db:PACKETSTORMid:154585

Trust: 0.1

db:PACKETSTORMid:154659

Trust: 0.1

db:PACKETSTORMid:154569

Trust: 0.1

db:VULHUBid:VHN-146821

Trust: 0.1

db:PACKETSTORMid:154608

Trust: 0.1

sources: VULHUB: VHN-146821 // JVNDB: JVNDB-2019-009455 // PACKETSTORM: 154514 // PACKETSTORM: 154608 // PACKETSTORM: 154565 // PACKETSTORM: 154562 // PACKETSTORM: 154513 // PACKETSTORM: 154572 // PACKETSTORM: 154540 // CNNVD: CNNVD-201909-807 // NVD: CVE-2019-14835

REFERENCES

url:https://www.openwall.com/lists/oss-security/2019/09/17/1

Trust: 2.5

url:https://usn.ubuntu.com/4135-1/

Trust: 2.3

url:https://usn.ubuntu.com/4135-2/

Trust: 2.3

url:https://nvd.nist.gov/vuln/detail/cve-2019-14835

Trust: 2.1

url:https://access.redhat.com/errata/rhsa-2019:2830

Trust: 1.8

url:https://access.redhat.com/errata/rhsa-2019:2862

Trust: 1.8

url:https://access.redhat.com/errata/rhsa-2019:2866

Trust: 1.8

url:https://access.redhat.com/errata/rhsa-2019:2900

Trust: 1.8

url:https://seclists.org/bugtraq/2019/sep/41

Trust: 1.7

url:https://seclists.org/bugtraq/2019/nov/11

Trust: 1.7

url:https://www.debian.org/security/2019/dsa-4531

Trust: 1.7

url:https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/yw3qnmpenpfegvtofpsnobl7jeijs25p/

Trust: 1.7

url:https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/kqfy6jyfiq2vfq7qcsxpwtul5zdncjl5/

Trust: 1.7

url:https://access.redhat.com/errata/rhba-2019:2824

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2827

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2828

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2829

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2854

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2863

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2864

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2865

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2867

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2869

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2889

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2899

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2901

Trust: 1.7

url:https://access.redhat.com/errata/rhsa-2019:2924

Trust: 1.7

url:https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html

Trust: 1.7

url:https://lists.debian.org/debian-lts-announce/2019/10/msg00000.html

Trust: 1.7

url:http://www.openwall.com/lists/oss-security/2019/09/24/1

Trust: 1.7

url:http://www.openwall.com/lists/oss-security/2019/10/03/1

Trust: 1.7

url:http://www.openwall.com/lists/oss-security/2019/10/09/3

Trust: 1.7

url:http://www.openwall.com/lists/oss-security/2019/10/09/7

Trust: 1.7

url:http://packetstormsecurity.com/files/154572/kernel-live-patch-security-notice-lsn-0056-1.html

Trust: 1.7

url:http://packetstormsecurity.com/files/154951/kernel-live-patch-security-notice-lsn-0058-1.html

Trust: 1.7

url:http://packetstormsecurity.com/files/155212/slackware-security-advisory-slackware-14.2-kernel-updates.html

Trust: 1.7

url:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-qemu-en

Trust: 1.7

url:https://bugzilla.redhat.com/show_bug.cgi?id=cve-2019-14835

Trust: 1.7

url:https://security.netapp.com/advisory/ntap-20191031-0005/

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html

Trust: 1.7

url:https://access.redhat.com/security/cve/cve-2019-14835

Trust: 1.6

url:https://access.redhat.com/security/vulnerabilities/kernel-vhost

Trust: 1.0

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-14835

Trust: 0.8

url:https://bugzilla.redhat.com/show_bug.cgi?id=1750727

Trust: 0.6

url:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/kqfy6jyfiq2vfq7qcsxpwtul5zdncjl5/

Trust: 0.6

url:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/yw3qnmpenpfegvtofpsnobl7jeijs25p/

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-201914218-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192984-1.html

Trust: 0.6

url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00237.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20193200-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192953-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192952-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192951-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192950-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192949-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192948-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192947-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2019/suse-su-20192946-1.html

Trust: 0.6

url:https://www.suse.com/support/update/announcement/2020/suse-su-20200093-1.html

Trust: 0.6

url:https://vigilance.fr/vulnerability/linux-kernel-buffer-overflow-via-vhost-vhost-net-30355

Trust: 0.6

url:https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200115-01-qemu-cn

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.4346/

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.4261/

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.4252/

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.4584/

Trust: 0.6

url:https://packetstormsecurity.com/files/154558/red-hat-security-advisory-2019-2854-01.html

Trust: 0.6

url:https://packetstormsecurity.com/files/154514/ubuntu-security-notice-usn-4135-1.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.3536/

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2020.0141/

Trust: 0.6

url:https://www.ibm.com/support/pages/node/1173364

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2020.0270/

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.4346.2/

Trust: 0.6

url:https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 0.4

url:https://bugzilla.redhat.com/):

Trust: 0.4

url:https://access.redhat.com/security/team/key/

Trust: 0.4

url:https://access.redhat.com/articles/11258

Trust: 0.4

url:https://access.redhat.com/security/team/contact/

Trust: 0.4

url:https://access.redhat.com/security/updates/classification/#important

Trust: 0.4

url:https://nvd.nist.gov/vuln/detail/cve-2019-15030

Trust: 0.2

url:https://usn.ubuntu.com/4135-1

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2019-15031

Trust: 0.2

url:https://launchpad.net/ubuntu/+source/linux-hwe/5.0.0-29.31~18.04.1

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-raspi2/4.4.0-1122.131

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-kvm/5.0.0-1017.18

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-azure/4.15.0-1059.64

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-gcp/4.15.0-1044.46

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-gcp/5.0.0-1017.17

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-raspi2/5.0.0-1017.17

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux/5.0.0-29.31

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-aws/4.4.0-1094.105

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-aws-hwe/4.15.0-1050.52~16.04.1

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-gke-4.15/4.15.0-1044.46

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-raspi2/4.15.0-1047.51

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-aws/4.15.0-1050.52

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux/4.15.0-64.73

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1025.28~16.04.1

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-azure/5.0.0-1020.21~18.04.1

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-snapdragon/5.0.0-1021.22

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-aws/5.0.0-1016.18

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-kvm/4.4.0-1058.65

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-snapdragon/4.4.0-1126.132

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-oem/4.15.0-1056.65

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-kvm/4.15.0-1046.46

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-gke-5.0/5.0.0-1017.17~18.04.1

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1025.28

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-gcp/4.15.0-1044.70

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux/4.4.0-164.192

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-snapdragon/4.15.0-1064.71

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-azure/5.0.0-1020.21

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-hwe/4.15.0-64.73~16.04.1

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2019-1125

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-1125

Trust: 0.1

url:https://access.redhat.com/articles/4329821

Trust: 0.1

url:https://usn.ubuntu.com/4135-2

Trust: 0.1

url:https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Trust: 0.1

sources: VULHUB: VHN-146821 // JVNDB: JVNDB-2019-009455 // PACKETSTORM: 154514 // PACKETSTORM: 154608 // PACKETSTORM: 154565 // PACKETSTORM: 154562 // PACKETSTORM: 154513 // PACKETSTORM: 154572 // PACKETSTORM: 154540 // CNNVD: CNNVD-201909-807 // NVD: CVE-2019-14835

CREDITS

Ubuntu, The vulnerability is caused by Linux Public disclosure by the kernel community. ,Red Hat

Trust: 0.6

sources: CNNVD: CNNVD-201909-807

SOURCES

db:VULHUBid:VHN-146821
db:JVNDBid:JVNDB-2019-009455
db:PACKETSTORMid:154514
db:PACKETSTORMid:154608
db:PACKETSTORMid:154565
db:PACKETSTORMid:154562
db:PACKETSTORMid:154513
db:PACKETSTORMid:154572
db:PACKETSTORMid:154540
db:CNNVDid:CNNVD-201909-807
db:NVDid:CVE-2019-14835

LAST UPDATE DATE

2024-11-11T21:26:50.745000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-146821date:2023-02-12T00:00:00
db:JVNDBid:JVNDB-2019-009455date:2019-09-20T00:00:00
db:CNNVDid:CNNVD-201909-807date:2023-03-23T00:00:00
db:NVDid:CVE-2019-14835date:2023-12-15T15:29:09.587

SOURCES RELEASE DATE

db:VULHUBid:VHN-146821date:2019-09-17T00:00:00
db:JVNDBid:JVNDB-2019-009455date:2019-09-20T00:00:00
db:PACKETSTORMid:154514date:2019-09-18T21:22:40
db:PACKETSTORMid:154608date:2019-09-25T18:06:56
db:PACKETSTORMid:154565date:2019-09-23T18:26:18
db:PACKETSTORMid:154562date:2019-09-23T18:25:39
db:PACKETSTORMid:154513date:2019-09-18T21:22:34
db:PACKETSTORMid:154572date:2019-09-23T18:31:46
db:PACKETSTORMid:154540date:2019-09-20T14:57:53
db:CNNVDid:CNNVD-201909-807date:2019-09-17T00:00:00
db:NVDid:CVE-2019-14835date:2019-09-17T16:15:10.980