pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
vuln-list-alt/oval/c9f2/ALT-PU-2019-2117/definitions.json
pepelyaevip 56bb29c44b ALT Vulnerability
2024-06-28 13:17:52 +00:00

221 lines
10 KiB
JSON
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20192117",
"Version": "oval:org.altlinux.errata:def:20192117",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2019-2117: package `kernel-image-mp` update to version 5.1.12-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c9f2"
],
"Products": [
"ALT SPWorkstation",
"ALT SPServer"
]
}
],
"References": [
{
"RefID": "ALT-PU-2019-2117",
"RefURL": "https://errata.altlinux.org/ALT-PU-2019-2117",
"Source": "ALTPU"
},
{
"RefID": "BDU:2019-02194",
"RefURL": "https://bdu.fstec.ru/vul/2019-02194",
"Source": "BDU"
},
{
"RefID": "BDU:2019-02195",
"RefURL": "https://bdu.fstec.ru/vul/2019-02195",
"Source": "BDU"
},
{
"RefID": "BDU:2019-02196",
"RefURL": "https://bdu.fstec.ru/vul/2019-02196",
"Source": "BDU"
},
{
"RefID": "BDU:2019-02751",
"RefURL": "https://bdu.fstec.ru/vul/2019-02751",
"Source": "BDU"
},
{
"RefID": "BDU:2019-03209",
"RefURL": "https://bdu.fstec.ru/vul/2019-03209",
"Source": "BDU"
},
{
"RefID": "CVE-2019-11477",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-11477",
"Source": "CVE"
},
{
"RefID": "CVE-2019-11478",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-11478",
"Source": "CVE"
},
{
"RefID": "CVE-2019-11479",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-11479",
"Source": "CVE"
},
{
"RefID": "CVE-2019-13233",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-13233",
"Source": "CVE"
},
{
"RefID": "CVE-2019-15090",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-15090",
"Source": "CVE"
}
],
"Description": "This update upgrades kernel-image-mp to version 5.1.12-alt1. \nSecurity Fix(es):\n\n * BDU:2019-02194: Уязвимость механизма TCP Selective Acknowledgement ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2019-02195: Уязвимость механизма TCP Selective Acknowledgement ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2019-02196: Уязвимость ядра операционной системы Linux, вызванная ошибками при обработке сегментов минимального размера, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2019-02751: Уязвимость ядра операционной системы Linux, связанная с использованием памяти после её освобождения, позволяющая нарушителю повысить свои привилегии\n\n * BDU:2019-03209: Уязвимость драйвера drivers/scsi/qedi/qedi_dbg.c ядра операционной системы Linux, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации\n\n * CVE-2019-11477: Jonathan Looney discovered that the TCP_SKB_CB(skb)-\u003etcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.\n\n * CVE-2019-11478: Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit f070ef2ac66716357066b683fb0baf55f8191a2e.\n\n * CVE-2019-11479: Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commits 967c05aee439e6e5d7d805e195b3a20ef5c433d6 and 5f3e2bf008c2221478101ee72f5cb4654b9fc363.\n\n * CVE-2019-13233: In arch/x86/lib/insn-eval.c in the Linux kernel before 5.1.9, there is a use-after-free for access to an LDT entry because of a race condition between modify_ldt() and a #BR exception for an MPX bounds violation.\n\n * CVE-2019-15090: An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2019-06-21"
},
"Updated": {
"Date": "2019-06-21"
},
"BDUs": [
{
"ID": "BDU:2019-02194",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-190, CWE-680",
"Href": "https://bdu.fstec.ru/vul/2019-02194",
"Impact": "High",
"Public": "20190615"
},
{
"ID": "BDU:2019-02195",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-400, CWE-770",
"Href": "https://bdu.fstec.ru/vul/2019-02195",
"Impact": "High",
"Public": "20190615"
},
{
"ID": "BDU:2019-02196",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-400, CWE-405, CWE-770",
"Href": "https://bdu.fstec.ru/vul/2019-02196",
"Impact": "High",
"Public": "20190615"
},
{
"ID": "BDU:2019-02751",
"CVSS": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"CVSS3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-362, CWE-416",
"Href": "https://bdu.fstec.ru/vul/2019-02751",
"Impact": "High",
"Public": "20190607"
},
{
"ID": "BDU:2019-03209",
"CVSS": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"CVSS3": "AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-125",
"Href": "https://bdu.fstec.ru/vul/2019-03209",
"Impact": "Low",
"Public": "20190513"
}
],
"CVEs": [
{
"ID": "CVE-2019-11477",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-190",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-11477",
"Impact": "High",
"Public": "20190619"
},
{
"ID": "CVE-2019-11478",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-400",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-11478",
"Impact": "High",
"Public": "20190619"
},
{
"ID": "CVE-2019-11479",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-770",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-11479",
"Impact": "High",
"Public": "20190619"
},
{
"ID": "CVE-2019-13233",
"CVSS": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"CVSS3": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-362",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-13233",
"Impact": "High",
"Public": "20190704"
},
{
"ID": "CVE-2019-15090",
"CVSS": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-125",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-15090",
"Impact": "Low",
"Public": "20190816"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:8.4",
"cpe:/o:alt:spserver:8.4"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20192117001",
"Comment": "kernel-headers-modules-mp is earlier than 0:5.1.12-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192117002",
"Comment": "kernel-headers-mp is earlier than 0:5.1.12-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192117003",
"Comment": "kernel-image-mp is earlier than 0:5.1.12-alt1"
}
]
}
]
}
}
]
}
Reference in New Issue View Git Blame Copy Permalink