Strix
26.1K

CVE-2019-14835

HIGHCVSS 7.8/10EPSS 0.63%

Last modified

CVE-2019-14835 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.. EPSS estimates a 0.63% chance of exploitation in the next 30 days.

Description

A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.

Metrics

CVSS 3.1
7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
0.63%

45.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
LinuxLinux Kernel>= 2.6.34, < 3.16.74
LinuxLinux Kernel>= 4.4, < 4.4.193
LinuxLinux Kernel>= 4.9, < 4.9.193
LinuxLinux Kernel>= 4.14, < 4.14.144
LinuxLinux Kernel>= 4.19, < 4.19.73
LinuxLinux Kernel>= 5.2, < 5.2.15
LinuxLinux Kernel5.3
CanonicalUbuntu Linux12.04
CanonicalUbuntu Linux14.04
CanonicalUbuntu Linux16.04
CanonicalUbuntu Linux18.04
CanonicalUbuntu Linux19.04
DebianDebian Linux8.0
DebianDebian Linux9.0
DebianDebian Linux10.0
FedoraprojectFedora29
FedoraprojectFedora30
OpensuseLeap15.0
OpensuseLeap15.1
NetappAff A700s FirmwareAll versions
NetappH410c FirmwareAll versions
NetappH610s FirmwareAll versions
NetappH300s FirmwareAll versions
NetappH500s FirmwareAll versions
NetappH700s FirmwareAll versions
NetappH300e FirmwareAll versions
NetappH500e FirmwareAll versions
NetappH700e FirmwareAll versions
NetappH410s FirmwareAll versions
NetappData Availability ServicesAll versions
NetappHci Management NodeAll versions
NetappService ProcessorAll versions
NetappSolidfireAll versions
NetappSteelstore Cloud Integrated StorageAll versions
RedhatOpenshift Container Platform3.11
RedhatEnterprise Linux8.0
RedhatEnterprise Linux Desktop6.0
RedhatEnterprise Linux Desktop7.0
RedhatEnterprise Linux Eus7.5
RedhatEnterprise Linux Eus7.6
RedhatEnterprise Linux Eus7.7
RedhatEnterprise Linux For Real Time7
RedhatEnterprise Linux For Real Time8
RedhatEnterprise Linux Server6.0
RedhatEnterprise Linux Server7.0
RedhatEnterprise Linux Server7.6
RedhatEnterprise Linux Server Aus6.5
RedhatEnterprise Linux Server Aus6.6
RedhatEnterprise Linux Server Aus7.2
RedhatEnterprise Linux Server Aus7.3

Showing 50 of 71 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-14835?
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.
How severe is CVE-2019-14835?
CVE-2019-14835 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 0.63% probability of exploitation in the next 30 days.
How do I fix CVE-2019-14835?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-14835?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST