CVE-2019-18660: Infoleak
First published: Wed Nov 27 2019(Updated: )
A flaw was found in the way the Linux kernel implemented a software flush of the Count Cache (indirect branch cache) and Link (Return Address) Stack on the PowerPC platform. The flushing of these structures helps to prevent SpectreRSB like attacks which may leak information from one user process to another. An unprivileged user could use this flaw to cross the syscall or process boundary and read privileged memory by conducting targeted cache side-channel attacks.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <0:2.6.32-754.31.1.el6 | 0:2.6.32-754.31.1.el6 |
| redhat/kernel-alt | <0:4.14.0-115.17.1.el7a | 0:4.14.0-115.17.1.el7a |
| redhat/kernel | <0:3.10.0-1127.el7 | 0:3.10.0-1127.el7 |
| redhat/kernel | <0:3.10.0-957.56.1.el7 | 0:3.10.0-957.56.1.el7 |
| redhat/kernel | <0:3.10.0-1062.21.1.el7 | 0:3.10.0-1062.21.1.el7 |
| redhat/kernel | <0:4.18.0-147.8.1.el8_1 | 0:4.18.0-147.8.1.el8_1 |
| redhat/kernel | <0:4.18.0-80.23.2.el8_0 | 0:4.18.0-80.23.2.el8_0 |
| IBM Data Risk Manager | <=2.0.6 | |
| Linux Kernel | <5.4.1 | |
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Ubuntu | =18.04 | |
| Ubuntu | =19.04 | |
| Ubuntu | =19.10 | |
| Fedora | =30 | |
| Fedora | =31 | |
| SUSE Linux | =15.1 | |
| Red Hat Enterprise Linux | =6.0 | |
| Red Hat Enterprise Linux | =7.0 | |
| Red Hat Enterprise Linux | =8.0 | |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.17-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2019-18660 https://nvd.nist.gov/vuln/detail/CVE-2019-18660
- https://bugzilla.redhat.com/show_bug.cgi?id=1777825
- https://access.redhat.com/errata/RHSA-2020:2933
- https://access.redhat.com/errata/RHSA-2020:0174
- https://access.redhat.com/errata/RHSA-2020:1016
- https://access.redhat.com/errata/RHSA-2020:2851
- https://access.redhat.com/errata/RHSA-2020:1984
- https://access.redhat.com/errata/RHSA-2020:1372
- https://access.redhat.com/errata/RHSA-2020:2429
- https://access.redhat.com/security/cve/cve-2019-18660
- http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html
- http://packetstormsecurity.com/files/155890/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
- http://www.openwall.com/lists/oss-security/2019/11/27/1
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.1
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=39e72bf96f5847ba87cc5bd7a3ce0fed813dc9ad
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYIFGYEDQXP5DVJQQUARQRK2PXKBKQGY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWWOOJKZ4NQYN4RMFIVJ3ZIXKJJI3MKP/
- https://seclists.org/bugtraq/2020/Jan/10
- https://security.netapp.com/advisory/ntap-20200103-0001/
- https://usn.ubuntu.com/4225-1/
- https://usn.ubuntu.com/4225-2/
- https://usn.ubuntu.com/4226-1/
- https://usn.ubuntu.com/4227-1/
- https://usn.ubuntu.com/4227-2/
- https://usn.ubuntu.com/4228-1/
- https://usn.ubuntu.com/4228-2/
- https://www.openwall.com/lists/oss-security/2019/11/27/1
- https://launchpad.net/bugs/cve/CVE-2019-18660
- https://git.kernel.org/linus/39e72bf96f5847ba87cc5bd7a3ce0fed813dc9ad
- https://git.kernel.org/linus/af2e8c68b9c5403f77096969c516f742f5bb29e0
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1777826
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYIFGYEDQXP5DVJQQUARQRK2PXKBKQGY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YWWOOJKZ4NQYN4RMFIVJ3ZIXKJJI3MKP/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/172297
- https://www.ibm.com/support/pages/node/6335281 (Advisory)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18660
- https://nvd.nist.gov/vuln/detail/CVE-2019-18660
- https://security-tracker.debian.org/tracker/CVE-2019-18660
- https://ubuntu.com/security/CVE-2019-18660
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the severity of CVE-2019-18660?
CVE-2019-18660 is rated as a medium-severity vulnerability in the Linux kernel impacting the PowerPC platform.
How do I fix CVE-2019-18660?
To fix CVE-2019-18660, update your Linux kernel to the appropriate remedial version for your distribution.
Which systems are affected by CVE-2019-18660?
CVE-2019-18660 affects various versions of the Linux kernel, including certain Red Hat, Ubuntu, Fedora, and openSUSE systems.
What type of vulnerability is CVE-2019-18660?
CVE-2019-18660 is a flaw related to insufficient flushing of the Count Cache and Link Stack, potentially leading to information leaks.
Can I still use my system if it is affected by CVE-2019-18660?
While you can still use your system, it is strongly recommended to apply the necessary patches to mitigate the risk of exploitation.
- collector/redhat-cve
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2019-18660
- agent/severity
- agent/weakness
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/remedy
- agent/first-publish-date
- agent/trending
- agent/last-modified-date
- agent/source
- agent/author
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- agent/event
- collector/nvd-cve
- source/NVD
- collector/security-tracker-debian
- source/Debian
- package-manager/redhat
- vendor/ibm
- canonical/ibm data risk manager
- version/ibm data risk manager/2.0.6
- vendor/linux
- canonical/linux kernel
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/14.04
- version/ubuntu/16.04
- version/ubuntu/18.04
- version/ubuntu/19.04
- version/ubuntu/19.10
- vendor/fedoraproject
- canonical/fedora
- version/fedora/30
- version/fedora/31
- vendor/opensuse
- canonical/suse linux
- version/suse linux/15.1
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/6.0
- version/red hat enterprise linux/7.0
- version/red hat enterprise linux/8.0
- package-manager/debian