Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2309)

Published: 2020-01-23 12:46:29
CVE Author: NIST National Vulnerability Database (NVD)

CVSS Base Vector:
AV:N/AC:L/Au:N/C:C/I:N/A:C

Summary:
The remote host is missing an update for the Huawei EulerOS 'kernel' Linux Distribution Package(s) announced via the EulerOS-SA-2019-2309 advisory.

Detection Method:
Checks if a vulnerable Linux Distribution Package version is present on the target host.

Technical Details:
An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.(CVE-2019-15213) An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver.(CVE-2019-15215) An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.(CVE-2019-15217) An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.(CVE-2019-15212) An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.(CVE-2019-15216) An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.(CVE-2019-15090) An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a cd data structure if alloc_disk fails in drivers/block/paride/pf.c.(CVE-2019-15923) An issue was discovered in the Linux kernel before 5.0.10. SMB2_negotiate in fs/cifs/smb2pdu.c has an out-of-bounds read because data structures are incompletely updated after a change from smb30 to smb21.(CVE-2019-15918) An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a pf data structure if alloc_disk fails in drivers/block/paride/pf.c.(CVE-2019-15922) An issue was discovered in the Linux kernel before 5.2.3. Out of bounds access exists in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the file drivers/net/wireless/ath/ath6kl/wmi.c.(CVE-2019-15926) An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c has a NULL pointer dereference because there is no -ENOMEM upon an alloc_workqueue failure.(CVE-2019-15924) A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.(CVE-2019-14835) In the Linux kernel through 5.2.14 on the powerpc ... Description truncated. Please see the references for more information.

Affected Versions:
'kernel' Linux Distribution Package(s) on Huawei EulerOS Virtualization for ARM 64 3.0.3.0.

Recommendations:
Please install the updated Linux Distribution Package(s).

Solution Type:
Vendor Patch

Detection Type:
Linux Distribution Package

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)

https://nvd.nist.gov/vuln/detail/CVE-2019-14814
https://nvd.nist.gov/vuln/detail/CVE-2019-14815
https://nvd.nist.gov/vuln/detail/CVE-2019-14816
https://nvd.nist.gov/vuln/detail/CVE-2019-14835
https://nvd.nist.gov/vuln/detail/CVE-2019-15030
https://nvd.nist.gov/vuln/detail/CVE-2019-15031
https://nvd.nist.gov/vuln/detail/CVE-2019-15090
https://nvd.nist.gov/vuln/detail/CVE-2019-15098
https://nvd.nist.gov/vuln/detail/CVE-2019-15099
https://nvd.nist.gov/vuln/detail/CVE-2019-15212
https://nvd.nist.gov/vuln/detail/CVE-2019-15213
https://nvd.nist.gov/vuln/detail/CVE-2019-15215
https://nvd.nist.gov/vuln/detail/CVE-2019-15216
https://nvd.nist.gov/vuln/detail/CVE-2019-15217
https://nvd.nist.gov/vuln/detail/CVE-2019-15918
https://nvd.nist.gov/vuln/detail/CVE-2019-15922
https://nvd.nist.gov/vuln/detail/CVE-2019-15923
https://nvd.nist.gov/vuln/detail/CVE-2019-15924
https://nvd.nist.gov/vuln/detail/CVE-2019-15926

References:

https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-2309

Search
Severity
High
CVSS Score
9.4

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.