SB2019032120 - Out-of-bounds read in Linux kernel
Published: March 21, 2019 Updated: September 3, 2019
Security Bulletin ID
SB2019032120
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Physical access
Highest impact
Information disclosure
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Out-of-bounds read (CVE-ID: CVE-2018-19985)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition when the function "hso_get_config_data" in "drivers/net/usb/hso.c" reads "if_num" from the USB device (as a u8) and uses it to index a small array. An authenticated local user with physical access to the system can use a malicious USB, trigger out-of-bounds read error and read contents of memory on the system.
Remediation
Install update from vendor's website.
References
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.148
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.13
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.91
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.170
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20