CVE-2019-11599

 

Published at: - 29-04-2019 08:29

Last modified: - 26-10-2022 01:44

Total changes: - 4

Description

The coredump implementation in the Linux kernel before 5.0.10 does not use locking or other mechanisms to prevent vma layout or vma flags changes while it runs, which allows local users to obtain sensitive information, cause a denial of service, or possibly have unspecified other impact by triggering a race condition with mmget_not_zero or get_task_mm calls. This is related to fs/userfaultfd.c, mm/mmap.c, fs/proc/task_mmu.c, and drivers/infiniband/core/uverbs_main.c.

Common Vulnerability Scoring System (CVSS)

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• https://github.com/torvalds/linux/commit/04f5866e41fb70690e28397487d8bd8eea7d712a
• https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=04f5866e41fb70690e28397487d8bd8eea7d712a
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.10
• https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.37
• https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.114
• https://bugs.chromium.org/p/project-zero/issues/detail?id=1790
• [oss-security] 20190429 Re: Linux kernel: multiple issues-Mailing List, Third Party Advisory
• [oss-security] 20190429 Linux kernel: multiple issues-Mailing List, Third Party Advisory
• http://packetstormsecurity.com/files/152663/Linux-Missing-Lockdown.html
• [oss-security] 20190430 Re: Linux kernel: multiple issues-Mailing List, Third Party Advisory
• 46781-Exploit, Third Party Advisory, VDB Entry
• 108113-Third Party Advisory, VDB Entry
• https://security.netapp.com/advisory/ntap-20190517-0002/
• [debian-lts-announce] 20190528 [SECURITY] [DLA 1799-1] linux security update-
• [debian-lts-announce] 20190528 [SECURITY] [DLA 1799-2] linux security update-
• DSA-4465-
• [debian-lts-announce] 20190618 [SECURITY] [DLA 1824-1] linux-4.9 security update-
• 20190618 [SECURITY] [DSA 4465-1] linux security update-
• https://support.f5.com/csp/article/K51674118
• openSUSE-SU-2019:1716-
• openSUSE-SU-2019:1757-
• 20190722 [slackware-security] Slackware 14.2 kernel (SSA:2019-202-01)-
• USN-4069-1-
• http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
• USN-4069-2-
• RHSA-2019:2043-
• RHSA-2019:2029-
• USN-4095-1-
• USN-4115-1-
• USN-4118-1-
• https://support.f5.com/csp/article/K51674118?utm_source=f5support&utm_medium=RSS
• RHSA-2019:3309-
• RHSA-2019:3517-
• RHSA-2020:0100-
• RHSA-2020:0103-
• RHSA-2020:0179-
• RHSA-2020:0543-
• https://security.netapp.com/advisory/ntap-20200608-0001/
• https://www.oracle.com/security-alerts/cpuApr2021.html

 

Keywords

NVD

 

CVE-2019-11599

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures