Home

CVE-2019-15030

Description

In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.

Risk Information

Base Score
4.4
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
EPSS Score
Exploitation Probability
0.073

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-4135-1) linux-image-aws_4.4.0.1094.98_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-aws_5.0.0.1016.17_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-aws_4.15.0.1050.49_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gcp_5.0.0.1017.43_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gcp_4.15.0.1044.58_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gcp_4.15.0.1044.70_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gke_5.0.0.1017.43_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gke_4.15.0.1044.47_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gke_4.15.0.1044.58_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-kvm_4.4.0.1058.58_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-kvm_5.0.0.1017.17_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-kvm_4.15.0.1046.46_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-oem_4.15.0.64.84_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-oem_4.15.0.1056.60_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-azure_5.0.0.1020.19_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-azure_5.0.0.1020.30_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-azure_4.15.0.1059.62_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-oracle_4.15.0.1025.18_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-oracle_4.15.0.1025.28_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-aws-hwe_4.15.0.1050.50_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-generic_5.0.0.29.30_i386.debLinux
Linux kernel (USN-4135-1) linux-image-generic_5.0.0.29.30_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-generic_4.15.0.64.66_i386.debLinux
Linux kernel (USN-4135-1) linux-image-generic_4.15.0.64.66_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-generic_4.4.0.164.172_i386.debLinux
Linux kernel (USN-4135-1) linux-image-generic_4.4.0.164.172_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gke-5.0_5.0.0.1017.7_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-virtual_5.0.0.29.30_i386.debLinux
Linux kernel (USN-4135-1) linux-image-virtual_5.0.0.29.30_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-virtual_4.15.0.64.66_i386.debLinux
Linux kernel (USN-4135-1) linux-image-virtual_4.15.0.64.66_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-virtual_4.4.0.164.172_i386.debLinux
Linux kernel (USN-4135-1) linux-image-virtual_4.4.0.164.172_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-gke-4.15_4.15.0.1044.47_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency_5.0.0.29.30_i386.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency_5.0.0.29.30_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency_4.15.0.64.66_i386.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency_4.15.0.64.66_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency_4.4.0.164.172_i386.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency_4.4.0.164.172_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.4.0-1058-kvm_4.4.0-1058.65_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.4.0-1094-aws_4.4.0-1094.105_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-1016-aws_5.0.0-1016.18_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-1017-gcp_5.0.0-1017.17_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-1017-gke_5.0.0-1017.17~18.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-1017-kvm_5.0.0-1017.18_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1044-gcp_4.15.0-1044.46_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1044-gcp_4.15.0-1044.70_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1044-gke_4.15.0-1044.46_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1046-kvm_4.15.0-1046.46_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1050-aws_4.15.0-1050.52_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1050-aws_4.15.0-1050.52~16.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1056-oem_4.15.0-1056.65_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-1020-azure_5.0.0-1020.21_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-1020-azure_5.0.0-1020.21~18.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31_i386.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31~18.04.1_i386.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-generic_5.0.0-29.31~18.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1059-azure_4.15.0-1059.64_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73_i386.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73~16.04.1_i386.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-generic_4.15.0-64.73~16.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.4.0-164-generic_4.4.0-164.192_i386.debLinux
Linux kernel (USN-4135-1) linux-image-4.4.0-164-generic_4.4.0-164.192_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-generic-hwe-16.04_4.15.0.64.84_i386.debLinux
Linux kernel (USN-4135-1) linux-image-generic-hwe-16.04_4.15.0.64.84_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-generic-hwe-18.04_5.0.0.29.86_i386.debLinux
Linux kernel (USN-4135-1) linux-image-generic-hwe-18.04_5.0.0.29.86_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-virtual-hwe-16.04_4.15.0.64.84_i386.debLinux
Linux kernel (USN-4135-1) linux-image-virtual-hwe-16.04_4.15.0.64.84_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-virtual-hwe-18.04_5.0.0.29.86_i386.debLinux
Linux kernel (USN-4135-1) linux-image-virtual-hwe-18.04_5.0.0.29.86_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1025-oracle_4.15.0-1025.28_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-1025-oracle_4.15.0-1025.28~16.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31_i386.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31~18.04.1_i386.debLinux
Linux kernel (USN-4135-1) linux-image-5.0.0-29-lowlatency_5.0.0-29.31~18.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73_i386.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73~16.04.1_i386.debLinux
Linux kernel (USN-4135-1) linux-image-4.15.0-64-lowlatency_4.15.0-64.73~16.04.1_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-4.4.0-164-lowlatency_4.4.0-164.192_i386.debLinux
Linux kernel (USN-4135-1) linux-image-4.4.0-164-lowlatency_4.4.0-164.192_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-16.04_4.15.0.64.84_i386.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-16.04_4.15.0.64.84_amd64.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-18.04_5.0.0.29.86_i386.debLinux
Linux kernel (USN-4135-1) linux-image-lowlatency-hwe-18.04_5.0.0.29.86_amd64.debLinux
SUSE-SU-2020:0093-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.7.1.x86_64.rpmLinux
SUSE-SU-2020:0093-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.7.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234