CVE-2019-16089
Published: 6 September 2019
An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return value.
From the Ubuntu Security Team
It was discovered that the network block device (nbd) implementation in the Linux kernel did not properly check for error conditions in some situations. An attacker could possibly use this to cause a denial of service (system crash).
Notes
Author | Note |
---|---|
sbeattie | fix has not landed upstream as of 2020-04-22 |
Priority
Status
Package | Release | Status |
---|---|---|
linux-oem-5.6 Launchpad, Ubuntu, Debian |
focal |
Ignored
(was needed now end-of-life)
|
hirsute |
Does not exist
|
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
eoan |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-aws-5.8 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.8.0-1035.37~20.04.1)
|
|
upstream |
Needed
|
|
linux-azure-5.8 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.8.0-1033.35~20.04.1)
|
|
upstream |
Needed
|
|
linux-gcp-5.8 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.8.0-1032.34~20.04.1)
|
|
upstream |
Needed
|
|
linux-oracle-5.8 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.8.0-1031.32~20.04.2)
|
|
upstream |
Needed
|
|
linux-riscv-5.8 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.8.0-14.16~20.04.1)
|
|
upstream |
Needed
|
|
linux Launchpad, Ubuntu, Debian |
upstream |
Needed
|
xenial |
Not vulnerable
(4.4.0-2.16)
|
|
hirsute |
Not vulnerable
(5.8.0-36.40+21.04.1)
|
|
precise |
Ignored
(was needs-triage ESM criteria)
|
|
trusty |
Ignored
(was needs-triage ESM criteria)
|
|
bionic |
Released
(4.15.0-109.110)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(was pending \[5.3.0-63.57\] now end-of-life)
|
|
focal |
Released
(5.4.0-42.46)
|
|
groovy |
Not vulnerable
(5.4.0-42.46)
|
|
Patches: Introduced by 47d902b90a32a42a3d33aef3a02170fc6f70aa23 |
||
linux-hwe-5.11 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.11.0-22.23~20.04.1)
|
upstream |
Needed
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
hirsute |
Does not exist
|
|
linux-riscv-5.11 Launchpad, Ubuntu, Debian |
focal |
Not vulnerable
(5.11.0-1015.16~20.04.1)
|
upstream |
Needed
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
hirsute |
Does not exist
|
|
linux-oem-5.13 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
focal |
Not vulnerable
(5.13.0-1009.10)
|
|
hirsute |
Does not exist
|
|
upstream |
Needed
|
|
linux-aws-5.11 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
focal |
Not vulnerable
(5.11.0-1009.9~20.04.2)
|
|
hirsute |
Does not exist
|
|
upstream |
Needed
|
|
linux-azure-5.11 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
focal |
Not vulnerable
(5.11.0-1007.7~20.04.2)
|
|
hirsute |
Does not exist
|
|
upstream |
Needed
|
|
linux-oracle-5.11 Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
focal |
Not vulnerable
(5.11.0-1008.8~20.04.1)
|
|
hirsute |
Does not exist
|
|
upstream |
Needed
|
|
linux-bluefield Launchpad, Ubuntu, Debian |
trusty |
Does not exist
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.4.0-1007.10)
|
|
upstream |
Needed
|
|
linux-hwe Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
groovy |
Does not exist
|
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Released
(4.15.0-112.113~16.04.1)
|
|
bionic |
Released
(5.3.0-64.58~18.04.1)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
linux-hwe-edge Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Ignored
(was needed now end-of-life)
|
|
bionic |
Ignored
(was needed now end-of-life)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-lts-xenial Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Ignored
(was needs-triage ESM criteria)
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-lts-trusty Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Ignored
(was needs-triage ESM criteria)
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-oem Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Ignored
(was needs-triage now end-of-life)
|
|
bionic |
Released
(4.15.0-1091.101)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(reached end-of-life)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-aws Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(5.8.0-1018.20+21.04.1)
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Ignored
(was needs-triage ESM criteria)
|
|
xenial |
Not vulnerable
(4.4.0-1001.10)
|
|
bionic |
Released
(4.15.0-1077.81)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(was pending \[5.3.0-1031.33\] now end-of-life)
|
|
focal |
Released
(5.4.0-1020.20)
|
|
groovy |
Not vulnerable
(5.4.0-1020.20)
|
|
linux-aws-hwe Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Released
(4.15.0-1079.83~16.04.1)
|
|
bionic |
Does not exist
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-azure-edge Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Ignored
(was needed now end-of-life)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-gcp-edge Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Ignored
(was needed now end-of-life)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-gke-4.15 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(4.15.0-1066.69)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-gke-5.0 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.0.0-1045.46)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-raspi2 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Not vulnerable
(4.2.0-1013.19)
|
|
bionic |
Released
(4.15.0-1065.69)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(was pending \[5.3.0-1029.31\] now end-of-life)
|
|
focal |
Ignored
(was needed now end-of-life)
|
|
groovy |
Does not exist
|
|
linux-snapdragon Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Not vulnerable
(4.4.0-1013.15)
|
|
bionic |
Released
(4.15.0-1083.91)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-oem-osp1 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.0.0-1065.70)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(reached end-of-life)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-aws-5.0 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Ignored
(was needed now end-of-life)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-azure-5.3 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.3.0-1034.35~18.04.1)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-gcp-5.3 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.3.0-1032.34~18.04.1)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-oracle-5.0 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Ignored
(was needed now end-of-life)
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-raspi2-5.3 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.3.0-1030.32~18.04.2)
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-gke-5.3 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.3.0-1032.34~18.04.1)
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-oracle-5.3 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.3.0-1030.32~18.04.1)
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-azure-4.15 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(4.15.0-1091.101)
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-aws-5.3 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.3.0-1032.34~18.04.2)
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-gcp-4.15 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(4.15.0-1080.90)
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-hwe-5.4 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.4.0-42.46~18.04.1)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-raspi-5.4 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.4.0-1015.15~18.04.1)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-azure-5.4 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.4.0-1022.22~18.04.1)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-oracle-5.4 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.4.0-1021.21~18.04.1)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-gcp-5.4 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.4.0-1021.21~18.04.1)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-aws-5.4 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Released
(5.4.0-1020.20~18.04.2)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
linux-riscv Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(5.8.0-10.12+21.04.1)
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Released
(5.4.0-30.34)
|
|
groovy |
Not vulnerable
(5.4.0-30.34)
|
|
linux-kvm Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(5.8.0-1010.11+21.04.1)
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Not vulnerable
(4.4.0-1004.9)
|
|
bionic |
Released
(4.15.0-1069.70)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(was pending \[5.3.0-1025.27\] now end-of-life)
|
|
focal |
Released
(5.4.0-1020.20)
|
|
groovy |
Not vulnerable
(5.4.0-1020.20)
|
|
linux-raspi Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(5.8.0-1008.11+21.04.1)
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Released
(5.4.0-1015.15)
|
|
groovy |
Not vulnerable
(5.4.0-1015.15)
|
|
linux-hwe-5.8 Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.8.0-23.24~20.04.1)
|
|
upstream |
Needed
|
|
linux-gke-5.4 Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
bionic |
Not vulnerable
(5.4.0-1025.25~18.04.1)
|
|
upstream |
Needed
|
|
linux-gkeop-5.4 Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
bionic |
Not vulnerable
(5.4.0-1001.1)
|
|
upstream |
Needed
|
|
linux-azure Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(5.8.0-1016.17+21.04.1)
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Released
(4.15.0-1091.101~14.04.1)
|
|
xenial |
Released
(4.15.0-1091.101~16.04.1)
|
|
bionic |
Ignored
(was needed now end-of-life)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(was pending \[5.3.0-1033.34\] now end-of-life)
|
|
focal |
Released
(5.4.0-1022.22)
|
|
groovy |
Not vulnerable
(5.4.0-1022.22)
|
|
linux-gcp Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(5.8.0-1015.15+21.04.1)
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Released
(4.15.0-1080.90~16.04.1)
|
|
bionic |
Ignored
(was needed now end-of-life)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(was pending \[5.3.0-1031.33\] now end-of-life)
|
|
focal |
Released
(5.4.0-1021.21)
|
|
groovy |
Not vulnerable
(5.4.0-1021.21)
|
|
linux-oracle Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(5.8.0-1014.14+21.04.1)
|
upstream |
Needed
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
xenial |
Released
(4.15.0-1050.54~16.04.1)
|
|
bionic |
Released
(4.15.0-1048.52)
|
|
disco |
Ignored
(reached end-of-life)
|
|
eoan |
Ignored
(was pending \[5.3.0-1029.31\] now end-of-life)
|
|
focal |
Released
(5.4.0-1021.21)
|
|
groovy |
Not vulnerable
(5.4.0-1021.21)
|
|
linux-dell300x Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
bionic |
Not vulnerable
(4.15.0-1005.8)
|
|
upstream |
Needed
|
|
linux-oem-5.10 Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.10.0-1008.9)
|
|
upstream |
Needed
|
|
linux-gkeop Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.4.0-1008.9)
|
|
upstream |
Needed
|
|
linux-gke Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
trusty |
Does not exist
|
|
bionic |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
focal |
Not vulnerable
(5.4.0-1033.35)
|
|
upstream |
Needed
|
|
xenial |
Ignored
(reached end of standard support)
|
Severity score breakdown
Parameter | Value |
---|---|
Base score | 4.1 |
Attack vector | Local |
Attack complexity | High |
Privileges required | High |
User interaction | None |
Scope | Unchanged |
Confidentiality | None |
Integrity impact | None |
Availability impact | High |
Vector | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16089
- https://lore.kernel.org/patchwork/patch/1106884/
- https://lore.kernel.org/patchwork/patch/1126650/
- https://lore.kernel.org/lkml/20190911164013.27364-1-navid.emamdoost@gmail.com/
- https://ubuntu.com/security/notices/USN-4414-1
- https://ubuntu.com/security/notices/USN-4425-1
- https://ubuntu.com/security/notices/USN-4439-1
- https://ubuntu.com/security/notices/USN-4440-1
- NVD
- Launchpad
- Debian