CVE-2018-19824

MEDIUM

Description

In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c.

References

http://www.securityfocus.com/bid/106109

https://access.redhat.com/errata/RHSA-2019:2703

https://bugzilla.suse.com/show_bug.cgi?id=1118152

https://git.kernel.org/pub/scm/linux/kernel/git/tiwai/sound.git/commit/?id=5f8cf712582617d523120df67d392059eaf2fc4b

https://github.com/torvalds/linux/commit/5f8cf712582617d523120df67d392059eaf2fc4b

https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html

https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html

https://lists.debian.org/debian-lts-announce/2019/05/msg00002.html

https://support.f5.com/csp/article/K98155950

https://usn.ubuntu.com/3879-1/

https://usn.ubuntu.com/3879-2/

https://usn.ubuntu.com/3930-1/

https://usn.ubuntu.com/3930-2/

https://usn.ubuntu.com/3931-1/

https://usn.ubuntu.com/3931-2/

https://usn.ubuntu.com/3933-1/

https://usn.ubuntu.com/3933-2/

Details

Source: MITRE

Published: 2018-12-03

Updated: 2019-09-10

Type: CWE-416

Risk Information

CVSS v2.0

Base Score: 4.6

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.9

Severity: MEDIUM

CVSS v3.0

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

ID	Name	Product	Family	Severity
145668	CentOS 8 : kernel (CESA-2019:2703)	Nessus	CentOS Local Security Checks	high
128859	RHEL 8 : kernel-rt (RHSA-2019:2741)	Nessus	Red Hat Local Security Checks	high
128845	Oracle Linux 8 : kernel (ELSA-2019-2703)	Nessus	Oracle Linux Local Security Checks	high
128665	RHEL 8 : kernel (RHSA-2019:2703)	Nessus	Red Hat Local Security Checks	high
125283	SUSE SLES12 Security Update : kernel (SUSE-SU-2019:1289-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)	Nessus	SuSE Local Security Checks	high
124834	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1512)	Nessus	Huawei Local Security Checks	high
124595	Debian DLA-1771-1 : linux-4.9 security update	Nessus	Debian Local Security Checks	high
124430	EulerOS 2.0 SP3 : kernel (EulerOS-SA-2019-1303)	Nessus	Huawei Local Security Checks	medium
123721	EulerOS Virtualization 2.5.4 : kernel (EulerOS-SA-2019-1253)	Nessus	Huawei Local Security Checks	medium
123712	EulerOS Virtualization 2.5.3 : kernel (EulerOS-SA-2019-1244)	Nessus	Huawei Local Security Checks	medium
123682	Ubuntu 14.04 LTS : linux vulnerabilities (USN-3933-1)	Nessus	Ubuntu Local Security Checks	medium
123679	Ubuntu 14.04 LTS / 16.04 LTS : linux-hwe, linux-aws-hwe, linux-azure, linux-gcp, linux-oracle (USN-3931-2)	Nessus	Ubuntu Local Security Checks	high
123678	Ubuntu 18.04 LTS : linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-oracle, (USN-3931-1)	Nessus	Ubuntu Local Security Checks	high
123677	Ubuntu 18.04 LTS : linux-hwe, linux-azure vulnerabilities (USN-3930-2)	Nessus	Ubuntu Local Security Checks	high
123676	Ubuntu 18.10 : linux, linux-aws, linux-azure, linux-gcp, linux-kvm, linux-raspi2 (USN-3930-1)	Nessus	Ubuntu Local Security Checks	high
123420	Debian DLA-1731-2 : linux regression update (Spectre)	Nessus	Debian Local Security Checks	high
122901	Photon OS 1.0: Linux PHSA-2019-1.0-0205	Nessus	PhotonOS Local Security Checks	critical
122891	SUSE SLES11 Security Update : kernel (SUSE-SU-2019:13979-1)	Nessus	SuSE Local Security Checks	high
122699	EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-1076)	Nessus	Huawei Local Security Checks	medium
122609	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2019:0541-1)	Nessus	SuSE Local Security Checks	high
122343	SUSE SLES12 Security Update : kernel (SUSE-SU-2019:0439-1)	Nessus	SuSE Local Security Checks	high
121633	openSUSE Security Update : the Linux Kernel (openSUSE-2019-140)	Nessus	SuSE Local Security Checks	high
121605	OracleVM 3.4 : Unbreakable / etc (OVMSA-2019-0002)	Nessus	OracleVM Local Security Checks	high
121597	Ubuntu 14.04 LTS : linux-lts-xenial, linux-aws vulnerabilities (USN-3879-2)	Nessus	Ubuntu Local Security Checks	high
121596	Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities (USN-3879-1)	Nessus	Ubuntu Local Security Checks	high
121571	SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:0224-1)	Nessus	SuSE Local Security Checks	high
121569	SUSE SLES12 Security Update : kernel (SUSE-SU-2019:0222-1) (Spectre)	Nessus	SuSE Local Security Checks	high
121505	Slackware 14.2 : Slackware 14.2 kernel (SSA:2019-030-01)	Nessus	Slackware Local Security Checks	high
121468	SUSE SLES11 Security Update : kernel (SUSE-SU-2019:13937-1)	Nessus	SuSE Local Security Checks	high
121344	SUSE SLES12 Security Update : kernel (SUSE-SU-2019:0148-1) (Spectre)	Nessus	SuSE Local Security Checks	high
121289	openSUSE Security Update : the Linux Kernel (openSUSE-2019-65)	Nessus	SuSE Local Security Checks	high
121202	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2019-4510)	Nessus	Oracle Linux Local Security Checks	medium
121201	Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2019-4509)	Nessus	Oracle Linux Local Security Checks	medium
120661	Fedora 28 : kernel / kernel-headers / kernel-tools (2018-a0914af224)	Nessus	Fedora Local Security Checks	medium
120445	Fedora 29 : kernel / kernel-headers / kernel-tools (2018-5904d0794d)	Nessus	Fedora Local Security Checks	medium
119647	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:4069-1)	Nessus	SuSE Local Security Checks	high

CVE-2018-19824

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Configuration 2

Configuration 3

Tenable Plugins

high

high

high

high

high

high

high

medium

medium

medium

medium

high

high

high

high

high

critical

high

medium

high

high

high

high

high

high

high

high

high

high

high

high

medium

medium

medium

medium

high