CVE-2019-10142
Published: 23 May 2019
A flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17. A parameter passed to an ioctl was incorrectly validated and used in size calculations for the page size calculation. An attacker can use this flaw to crash the system, corrupt memory, or create other adverse security affects.
From the Ubuntu Security Team
It was discovered that an integer overflow existed in the Freescale (PowerPC) hypervisor manager in the Linux kernel. A local attacker with write access to /dev/fsl-hv could use this to cause a denial of service (system crash) or possibly execute arbitrary code.
Notes
| Author | Note |
|---|---|
| sbeattie |
depends on freescale (ppc) only |
| tyhicks |
Only the powerpc-e500mc and powerpc64-emb flavours of the Xenial powerpc kernel are affected. I'm downgrading the priority to negligible since no officially supported architectures are affected. |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
linux
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Ignored
(was needs-triage ESM criteria)
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Released
(4.4.0-157.185)
|
|
|
Patches:
Introduced by
6db7199407ca56f55bc0832fb124e1ad216ea57b
|
||
|
linux-aws
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Ignored
(was needed ESM criteria)
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-aws-hwe
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-azure
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Ignored
(was needs-triage ESM criteria)
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-azure-edge
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-euclid
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Ignored
(end of life, was needs-triage)
|
|
|
linux-flo
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Ignored
(abandoned)
|
|
|
linux-gcp
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-gcp-edge
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-gke
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Ignored
(end of standard support)
|
|
|
linux-goldfish
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Ignored
(end of life)
|
|
|
linux-grouper
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-hwe
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-hwe-edge
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-kvm
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-lts-trusty
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-lts-utopic
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-lts-vivid
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-lts-wily
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-lts-xenial
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Ignored
(was needs-triage ESM criteria)
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-maguro
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-mako
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Ignored
(abandoned)
|
|
|
linux-manta
Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Does not exist
|
|
|
linux-oem
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Ignored
(end of standard support, was needs-triage)
|
|
|
linux-oracle
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-raspi2
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
|
linux-snapdragon
Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
| cosmic |
Does not exist
|
|
| disco |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(5.2~rc1)
|
|
| xenial |
Not vulnerable
(CONFIG_FSL_HV_MANAGER is not enabled)
|
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 7.8 |
| Attack vector | Local |
| Attack complexity | Low |
| Privileges required | Low |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | High |
| Availability impact | High |
| Vector | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |