CVE-2019-12456

Опубликовано: 30 мая 2019

Источник: ubuntu

Приоритет: negligible

EPSS Низкий

CVSS2: 7.2

CVSS3: 7.8

Описание

An issue was discovered in the MPT3COMMAND case in _ctl_ioctl_main in drivers/scsi/mpt3sas/mpt3sas_ctl.c in the Linux kernel through 5.1.5. It allows local users to cause a denial of service or possibly have unspecified other impact by changing the value of ioc_number between two kernel reads of that value, aka a "double fetch" vulnerability. NOTE: a third party reports that this is unexploitable because the doubly fetched value is not used

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	ignored	end of life, was needs-triage
trusty	ignored	end of standard support
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	DNE
devel	not-affected
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	ignored	end of life, was needs-triage
trusty	DNE
trusty/esm	DNE
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	not-affected
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	double fetched value is not used
esm-infra/xenial	not-affected	double fetched value is not used
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	ignored	end of life
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
cosmic	DNE
devel	not-affected	double fetched value is not used
disco	ignored	end of life
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 23%

0.00077

Низкий

7.2 High

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2019-12456

CVSS3: 7.8

redhat

больше 6 лет назад

CVE-2019-12456

CVSS3: 7.8

nvd

больше 6 лет назад

CVE-2019-12456

CVSS3: 7.8

debian

больше 6 лет назад

An issue was discovered in the MPT3COMMAND case in _ctl_ioctl_main in ...

GHSA-c9q3-58pp-r6v9

CVSS3: 7.8

github

больше 3 лет назад

BDU:2020-01602

CVSS3: 7.8

fstec

больше 6 лет назад

Уязвимость функции _ctl_ioctl_main ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 23%

0.00077

Низкий

7.2 High

CVSS2

7.8 High

CVSS3

CVE-2019-12456

Описание

Пакет linux

Пакет linux-aws

Пакет linux-aws-hwe

Пакет linux-azure

Пакет linux-azure-edge

Пакет linux-euclid

Пакет linux-flo

Пакет linux-gcp

Пакет linux-gcp-edge

Пакет linux-gke

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-hwe

Пакет linux-hwe-edge

Пакет linux-kvm

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-oem

Пакет linux-oracle

Пакет linux-raspi2

Пакет linux-snapdragon

Ссылки на источники

Связанные уязвимости