USN-4069-1: Linux kernel vulnerabilities
First published: Tue Jul 23 2019(Updated: )
It was discovered that an integer overflow existed in the Linux kernel when reference counting pages, leading to potential use-after-free issues. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11487) Jann Horn discovered that a race condition existed in the Linux kernel when performing core dumps. A local attacker could use this to cause a denial of service (system crash) or expose sensitive information. (CVE-2019-11599) It was discovered that the ext4 file system implementation in the Linux kernel did not properly zero out memory in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11833) It was discovered that the Bluetooth Human Interface Device Protocol (HIDP) implementation in the Linux kernel did not properly verify strings were NULL terminated in certain situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11884)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-gke | <5.0.0.1011.11 | 5.0.0.1011.11 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-1017-snapdragon | <5.0.0-1017.18 | 5.0.0-1017.18 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-21-generic | <5.0.0-21.22 | 5.0.0-21.22 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-1013-raspi2 | <5.0.0-1013.13 | 5.0.0-1013.13 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-gcp | <5.0.0.1011.11 | 5.0.0.1011.11 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-1012-azure | <5.0.0-1012.12 | 5.0.0-1012.12 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-azure | <5.0.0.1012.11 | 5.0.0.1012.11 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-21-generic-lpae | <5.0.0-21.22 | 5.0.0-21.22 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-generic | <5.0.0.21.22 | 5.0.0.21.22 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-virtual | <5.0.0.21.22 | 5.0.0.21.22 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-21-lowlatency | <5.0.0-21.22 | 5.0.0-21.22 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-raspi2 | <5.0.0.1013.10 | 5.0.0.1013.10 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-aws | <5.0.0.1011.11 | 5.0.0.1011.11 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-generic-lpae | <5.0.0.21.22 | 5.0.0.21.22 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-snapdragon | <5.0.0.1017.10 | 5.0.0.1017.10 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-1011-kvm | <5.0.0-1011.12 | 5.0.0-1011.12 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-kvm | <5.0.0.1011.11 | 5.0.0.1011.11 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-1011-gcp | <5.0.0-1011.11 | 5.0.0-1011.11 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-lowlatency | <5.0.0.21.22 | 5.0.0.21.22 |
| =19.04 | ||
| All of | ||
| ubuntu/linux-image-5.0.0-1011-aws | <5.0.0-1011.12 | 5.0.0-1011.12 |
| =19.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2019-11487
- https://ubuntu.com/security/CVE-2019-11599
- https://ubuntu.com/security/CVE-2019-11833
- https://ubuntu.com/security/CVE-2019-11884
- https://ubuntu.com/security/notices/USN-4145-1
- https://ubuntu.com/security/notices/USN-4118-1
- https://ubuntu.com/security/notices/USN-4115-1
- https://ubuntu.com/security/notices/USN-4069-2
- https://ubuntu.com/security/notices/USN-4095-1
- https://ubuntu.com/security/notices/USN-4076-1
- https://ubuntu.com/security/notices/USN-4068-2
- https://ubuntu.com/security/notices/USN-4068-1
- https://ubuntu.com/security/notices/USN-4095-2
- https://launchpad.net/ubuntu/+source/linux-snapdragon/5.0.0-1017.18
- https://launchpad.net/ubuntu/+source/linux/5.0.0-21.22
- https://launchpad.net/ubuntu/+source/linux-raspi2/5.0.0-1013.13
- https://launchpad.net/ubuntu/+source/linux-azure/5.0.0-1012.12
- https://launchpad.net/ubuntu/+source/linux-kvm/5.0.0-1011.12
- https://launchpad.net/ubuntu/+source/linux-gcp/5.0.0-1011.11
- https://ubuntu.com/security/notices/USN-4069-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for this Linux kernel vulnerability?
The vulnerability ID for this Linux kernel vulnerability is CVE-2019-11487.
What is the impact of the vulnerability?
The vulnerability could lead to potential use-after-free issues, causing a denial of service (system crash) or possibly arbitrary code execution.
Which version of the Linux kernel is affected by this vulnerability?
The Linux kernel versions affected by this vulnerability are 5.0.0.1011.11, 5.0.0-1017.18, 5.0.0-21.22, 5.0.0-1013.13, and 5.0.0.1012.11.
How do I fix this Linux kernel vulnerability?
To fix this vulnerability, update your Linux kernel to version 5.0.0.1011.11, 5.0.0-1017.18, 5.0.0-21.22, 5.0.0-1013.13, or 5.0.0.1012.11.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability at the following references: [CVE-2019-11487](https://ubuntu.com/security/CVE-2019-11487), [CVE-2019-11599](https://ubuntu.com/security/CVE-2019-11599), [CVE-2019-11833](https://ubuntu.com/security/CVE-2019-11833).
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- agent/weakness
- collector/usn
- source/Ubuntu
- anchor-related/USN-4145-1
- anchor-related/USN-4118-1
- anchor-related/USN-4115-1
- anchor-related/USN-4069-2
- anchor-related/USN-4095-1
- anchor-related/USN-4076-1
- anchor-related/USN-4068-2
- anchor-related/USN-4068-1
- anchor-related/USN-4095-2
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/19.04