Home

CVE-2019-9893

Description

libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might able to lead to bypassing seccomp filters and potential privilege escalations.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.794

Associated Vulnerability

VulnerabilityOS Platform
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.16.04.2_i386.debLinux
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.16.04.2_amd64.debLinux
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.18.04.2_i386.debLinux
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.18.04.2_amd64.debLinux
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.18.10.3_i386.debLinux
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.18.10.3_amd64.debLinux
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.19.04.3_i386.debLinux
library for working with the Linux seccomp filter (USN-4001-1) libseccomp2_2.4.1-0ubuntu0.19.04.3_amd64.debLinux
(RHSA-2019:3624) libseccomp security, bug fix, and enhancement update libseccomp-2.4.1-1.el8.i686.rpmLinux
(RHSA-2019:3624) libseccomp security, bug fix, and enhancement update libseccomp-2.4.1-1.el8.x86_64.rpmLinux
(RHSA-2019:3624) libseccomp security, bug fix, and enhancement update libseccomp-debugsource-2.4.1-1.el8.i686.rpmLinux
(RHSA-2019:3624) libseccomp security, bug fix, and enhancement update libseccomp-debugsource-2.4.1-1.el8.x86_64.rpmLinux
(CESA-2019:3624) libseccomp security, bug fix, and enhancement update libseccomp-2.4.1-1.el8.i686.rpmLinux
(CESA-2019:3624) libseccomp security, bug fix, and enhancement update libseccomp-2.4.1-1.el8.x86_64.rpmLinux
SUSE-SU-2019:2941-1(SUSE Linux Enterprise Server 12-SP5 ) libseccomp-debugsource-2.4.1-11.3.2.x86_64.rpmLinux
SUSE-SU-2019:2941-1(SUSE Linux Enterprise Server 12-SP5 ) libseccomp2-2.4.1-11.3.2.x86_64.rpmLinux
SUSE-SU-2019:2941-1(SUSE Linux Enterprise Server 12-SP5 ) libseccomp2-32bit-2.4.1-11.3.2.x86_64.rpmLinux
SUSE-SU-2019:2941-1(SUSE Linux Enterprise Server 12-SP5 ) libseccomp2-debuginfo-2.4.1-11.3.2.x86_64.rpmLinux
SUSE-SU-2019:2941-1(SUSE Linux Enterprise Server 12-SP5 ) libseccomp2-debuginfo-32bit-2.4.1-11.3.2.x86_64.rpmLinux
(RHSA-2019:3624)Moderate: security, bug fix, and enhancement update libseccomp-debuginfo-2.4.1-1.el8.i686.rpmLinux
(RHSA-2019:3624)Moderate: security, bug fix, and enhancement update libseccomp-debuginfo-2.4.1-1.el8.x86_64.rpmLinux
(RHSA-2019:3624)Moderate: security, bug fix, and enhancement update libseccomp-devel-debuginfo-2.4.1-1.el8.i686.rpmLinux
(RHSA-2019:3624)Moderate: security, bug fix, and enhancement update libseccomp-devel-debuginfo-2.4.1-1.el8.x86_64.rpmLinux
Libseccomp update (ELSA-2019-3624) libseccomp-2.4.1-1.el8.i686.rpmLinux
Libseccomp update (ELSA-2019-3624) libseccomp-2.4.1-1.el8.x86_64.rpmLinux
Libseccomp-devel update (ELSA-2019-3624) libseccomp-devel-2.4.1-1.el8.i686.rpmLinux
Libseccomp-devel update (ELSA-2019-3624) libseccomp-devel-2.4.1-1.el8.x86_64.rpmLinux
libseccomp Security Update (ALAS-2019-1360) libseccomp-2.4.1-1.amzn2.i686.rpmLinux
libseccomp Security Update (ALAS-2019-1360) libseccomp-2.4.1-1.amzn2.x86_64.rpmLinux
libseccomp Security Update (ALAS-2019-1360) libseccomp-devel-2.4.1-1.amzn2.x86_64.rpmLinux
libseccomp Security Update (ALAS-2019-1360) libseccomp-static-2.4.1-1.amzn2.x86_64.rpmLinux
CVE-2019-9893NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234