CVE 2019-14835
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.
Related bugs and status
CVE-2019-14835 (Candidate) is related to these bugs:
Bug #1714178: Triple 4K monitor display failed (modesetting driver limited to 8192x8192)
Bug #1826716: Include Sunix serial/parallel driver
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1826716 | Include Sunix serial/parallel driver | linux-oem (Ubuntu) | Undecided | Invalid | ||
1826716 | Include Sunix serial/parallel driver | linux-oem (Ubuntu Bionic) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | HWE Next | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux-oem-osp1 (Ubuntu) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux-oem-osp1 (Ubuntu Bionic) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux (Ubuntu) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux (Ubuntu Bionic) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux (Ubuntu Disco) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux-oem (Ubuntu Disco) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux-oem-osp1 (Ubuntu Disco) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux (Ubuntu Eoan) | Undecided | Fix Released | ||
1826716 | Include Sunix serial/parallel driver | linux-oem (Ubuntu Eoan) | Undecided | Invalid | ||
1826716 | Include Sunix serial/parallel driver | linux-oem-osp1 (Ubuntu Eoan) | Undecided | Fix Released |
Bug #1839971: bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Incomplete | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Confirmed | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | New | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Confirmed | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | In Progress | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Confirmed | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | linux-oem-osp1 (Ubuntu) | Undecided | Fix Released | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | linux-oem-osp1 (Ubuntu Bionic) | Medium | Fix Released | ||
1839971 | bionic/linux-oem-osp1: 5.0.0-1019.21 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released |
Bug #1839980: bionic/linux-oem: 4.15.0-1051.60 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Incomplete | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | New | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | linux-oem (Ubuntu) | Undecided | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | linux-oem (Ubuntu Bionic) | Medium | Fix Released | ||
1839980 | bionic/linux-oem: 4.15.0-1051.60 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released |
Bug #1840394: Intel HDMI audio print "Unable to sync register" errors
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1840394 | Intel HDMI audio print "Unable to sync register" errors | linux (Ubuntu) | Critical | Fix Released | ||
1840394 | Intel HDMI audio print "Unable to sync register" errors | HWE Next | Undecided | Fix Released | ||
1840394 | Intel HDMI audio print "Unable to sync register" errors | linux-oem (Ubuntu) | Undecided | Invalid | ||
1840394 | Intel HDMI audio print "Unable to sync register" errors | linux (Ubuntu Bionic) | Medium | Fix Released | ||
1840394 | Intel HDMI audio print "Unable to sync register" errors | linux-oem (Ubuntu Bionic) | Undecided | Fix Released | ||
1840394 | Intel HDMI audio print "Unable to sync register" errors | linux (Ubuntu Disco) | Medium | Fix Released | ||
1840394 | Intel HDMI audio print "Unable to sync register" errors | linux-oem (Ubuntu Disco) | Undecided | Fix Released |
Bug #1840395: reboot will introduce an alarm 'beep ...' during BIOS phase
Bug #1840815: bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | linux-oem-osp1 (Ubuntu) | Undecided | Fix Released | ||
1840815 | bionic/linux-oem-osp1: 5.0.0-1020.22 -proposed tracker | linux-oem-osp1 (Ubuntu Bionic) | Medium | Fix Released |
Bug #1842388: Timeout waiting for hardware access (CSR_GP_CNTRL 0xffffffff) with backport-iwlwifi-dkms 7744 against 4.15.0-1051-oem
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1842388 | Timeout waiting for hardware access (CSR_GP_CNTRL 0xffffffff) with backport-iwlwifi-dkms 7744 against 4.15.0-1051-oem | linux-oem (Ubuntu) | Undecided | Fix Released | ||
1842388 | Timeout waiting for hardware access (CSR_GP_CNTRL 0xffffffff) with backport-iwlwifi-dkms 7744 against 4.15.0-1051-oem | linux-oem (Ubuntu Bionic) | Undecided | Fix Released | ||
1842388 | Timeout waiting for hardware access (CSR_GP_CNTRL 0xffffffff) with backport-iwlwifi-dkms 7744 against 4.15.0-1051-oem | HWE Next | Undecided | Fix Released |
Bug #1842418: bionic/linux-oem: 4.15.0-1052.61 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Incomplete | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Confirmed | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | New | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | linux-oem (Ubuntu) | Undecided | Fix Released | ||
1842418 | bionic/linux-oem: 4.15.0-1052.61 -proposed tracker | linux-oem (Ubuntu Bionic) | Medium | Fix Released |
Bug #1842714: bionic/linux-oem: 4.15.0-1054.63 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Confirmed | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | linux-oem (Ubuntu) | Undecided | Fix Released | ||
1842714 | bionic/linux-oem: 4.15.0-1054.63 -proposed tracker | linux-oem (Ubuntu Bionic) | Medium | Fix Released |
Bug #1843533: powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) / powerpc/tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1843533 | powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) / powerpc/tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) | linux (Ubuntu) | High | Fix Released | ||
1843533 | powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) / powerpc/tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) | The Ubuntu-power-systems project | High | Fix Released | ||
1843533 | powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) / powerpc/tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) | linux (Ubuntu Bionic) | High | Fix Released | ||
1843533 | powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) / powerpc/tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) | linux (Ubuntu Disco) | High | Fix Released |
Bug #1847817: CVE-2019-14835: kernel: vhost-net: guest to host kernel escape during migration
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1847817 | CVE-2019-14835: kernel: vhost-net: guest to host kernel escape during migration | StarlingX | High | Fix Released |
Bug #1852667: livepatch status is less user-friendly once it gets kernel-upgrade-required "cannot send status to server: bad server status 403"
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1852667 | livepatch status is less user-friendly once it gets kernel-upgrade-required "cannot send status to server: bad server status 403" | Canonical Livepatch Client | Wishlist | Confirmed |
See the
CVE page on Mitre.org
for more details.