CVE-2019-14835
Description
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernels vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.08
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in IBM Security Guardium 10.6 | Windows |
| Linux kernel (USN-4135-1) linux-image-aws_4.4.0.1094.98_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-aws_5.0.0.1016.17_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-aws_4.15.0.1050.49_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gcp_5.0.0.1017.43_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gcp_4.15.0.1044.58_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gcp_4.15.0.1044.70_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gke_5.0.0.1017.43_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gke_4.15.0.1044.47_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gke_4.15.0.1044.58_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-kvm_4.4.0.1058.58_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-kvm_5.0.0.1017.17_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-kvm_4.15.0.1046.46_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-oem_4.15.0.64.84_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-oem_4.15.0.1056.60_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-azure_5.0.0.1020.19_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-azure_5.0.0.1020.30_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-azure_4.15.0.1059.62_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-oracle_4.15.0.1025.18_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-oracle_4.15.0.1025.28_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-aws-hwe_4.15.0.1050.50_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic_5.0.0.29.30_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic_5.0.0.29.30_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic_4.15.0.64.66_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic_4.15.0.64.66_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic_4.4.0.164.172_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic_4.4.0.164.172_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gke-5.0_5.0.0.1017.7_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual_5.0.0.29.30_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual_5.0.0.29.30_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual_4.15.0.64.66_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual_4.15.0.64.66_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual_4.4.0.164.172_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual_4.4.0.164.172_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-gke-4.15_4.15.0.1044.47_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency_5.0.0.29.30_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency_5.0.0.29.30_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency_4.15.0.64.66_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency_4.15.0.64.66_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency_4.4.0.164.172_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency_4.4.0.164.172_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.4.0-1058-kvm_4.4.0-1058.65_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.4.0-1094-aws_4.4.0-1094.105_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-1016-aws_5.0.0-1016.18_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-1017-gcp_5.0.0-1017.17_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-1017-gke_5.0.0-1017.17~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-1017-kvm_5.0.0-1017.18_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1044-gcp_4.15.0-1044.46_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1044-gcp_4.15.0-1044.70_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1044-gke_4.15.0-1044.46_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1046-kvm_4.15.0-1046.46_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1050-aws_4.15.0-1050.52_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1050-aws_4.15.0-1050.52~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1056-oem_4.15.0-1056.65_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-1020-azure_5.0.0-1020.21_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-1020-azure_5.0.0-1020.21~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31~18.04.1_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1059-azure_4.15.0-1059.64_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.4.0-164-generic_4.4.0-164.192_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.4.0-164-generic_4.4.0-164.192_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic-hwe-16.04_4.15.0.64.84_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic-hwe-16.04_4.15.0.64.84_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic-hwe-18.04_5.0.0.29.86_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-generic-hwe-18.04_5.0.0.29.86_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual-hwe-16.04_4.15.0.64.84_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual-hwe-16.04_4.15.0.64.84_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual-hwe-18.04_5.0.0.29.86_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-virtual-hwe-18.04_5.0.0.29.86_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1025-oracle_4.15.0-1025.28_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-1025-oracle_4.15.0-1025.28~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31~18.04.1_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.4.0-164-lowlatency_4.4.0-164.192_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-4.4.0-164-lowlatency_4.4.0-164.192_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-16.04_4.15.0.64.84_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-16.04_4.15.0.64.84_amd64.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-18.04_5.0.0.29.86_i386.deb | Linux |
| Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-18.04_5.0.0.29.86_amd64.deb | Linux |
| Linux kernel (0056-1) ibus_1.5.11-1ubuntu2.3_i386.deb | Linux |
| Linux kernel (0056-1) ibus_1.5.11-1ubuntu2.3_amd64.deb | Linux |
| Linux kernel (0056-1) ibus_1.5.17-3ubuntu5.2_i386.deb | Linux |
| Linux kernel (0056-1) ibus_1.5.17-3ubuntu5.2_amd64.deb | Linux |
| Linux kernel (0056-1) ibus_1.5.19-1ubuntu2.2_i386.deb | Linux |
| Linux kernel (0056-1) ibus_1.5.19-1ubuntu2.2_amd64.deb | Linux |
| (RHSA-2019:2827) kernel security update bpftool-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-abi-whitelists-4.18.0-80.11.2.el8_0.noarch.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-core-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-cross-headers-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-debug-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-debug-core-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-debug-devel-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-debug-modules-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-debug-modules-extra-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-devel-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-doc-4.18.0-80.11.2.el8_0.noarch.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-headers-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-modules-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-modules-extra-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-tools-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update kernel-tools-libs-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update perf-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2827) kernel security update python3-perf-4.18.0-80.11.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-2.6.32-754.23.1.el6.i686.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-2.6.32-754.23.1.el6.x86_64.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-abi-whitelists-2.6.32-754.23.1.el6.noarch.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-debug-2.6.32-754.23.1.el6.i686.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-debug-2.6.32-754.23.1.el6.x86_64.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-debug-devel-2.6.32-754.23.1.el6.i686.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-debug-devel-2.6.32-754.23.1.el6.x86_64.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-devel-2.6.32-754.23.1.el6.i686.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-devel-2.6.32-754.23.1.el6.x86_64.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-doc-2.6.32-754.23.1.el6.noarch.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-firmware-2.6.32-754.23.1.el6.noarch.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-headers-2.6.32-754.23.1.el6.i686.rpm | Linux |
| (RHSA-2019:2863) kernel security update kernel-headers-2.6.32-754.23.1.el6.x86_64.rpm | Linux |
| (RHSA-2019:2863) kernel security update perf-2.6.32-754.23.1.el6.i686.rpm | Linux |
| (RHSA-2019:2863) kernel security update perf-2.6.32-754.23.1.el6.x86_64.rpm | Linux |
| (RHSA-2019:2863) kernel security update python-perf-2.6.32-754.23.1.el6.i686.rpm | Linux |
| (RHSA-2019:2863) kernel security update python-perf-2.6.32-754.23.1.el6.x86_64.rpm | Linux |
| (RHSA-2019:2854) kpatch-patch security update kpatch-patch-3_10_0-1062-1-1.el7.x86_64.rpm | Linux |
| (RHSA-2019:2854) kpatch-patch security update kpatch-patch-3_10_0-1062_1_1-1-1.el7.x86_64.rpm | Linux |
| SUSE-SU-2019:14218-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.108.1.i586.rpm | Linux |
| SUSE-SU-2019:14218-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.108.1.x86_64.rpm | Linux |
| SUSE-SU-2019:14218-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.108.1.i586.rpm | Linux |
| SUSE-SU-2019:14218-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.108.1.x86_64.rpm | Linux |
| SUSE-SU-2019:14218-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.108.1.i586.rpm | Linux |
| SUSE-SU-2019:14218-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.108.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0093-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.7.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0093-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.7.1.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2020-5913) kernel-uek-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2020-5913) kernel-uek-debug-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2020-5913) kernel-uek-debug-devel-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2020-5913) kernel-uek-devel-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-tools update (ELSA-2020-5913) kernel-uek-tools-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2020-5913) kernel-uek-doc-4.14.35-2025.402.2.1.el7uek.noarch.rpm | Linux |
| Buffer Copy without Checking Size of Input (Classic Buffer Overflow) Vulnerability (CVE-2019-14835) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234