CVE-2019-19338

LOW

Description

A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has 'TSX' enabled. Confidentiality of data is the highest threat associated with this vulnerability.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338

https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort

https://www.openwall.com/lists/oss-security/2019/12/10/3

Details

Source: MITRE

Published: 2020-07-13

Updated: 2020-07-21

Type: CWE-203

Risk Information

CVSS v2.0

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3.0

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM

Tenable Plugins

View all (26 total)

IDNameProductFamilySeverity
148041EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-1684)NessusHuawei Local Security Checks
high
145801CentOS 8 : kernel (CESA-2020:0339)NessusCentOS Local Security Checks
critical
143971NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel Multiple Vulnerabilities (NS-SA-2020-0108)NessusNewStart CGSL Local Security Checks
critical
141400NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2020-0041)NessusNewStart CGSL Local Security Checks
high
136239EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1536)NessusHuawei Local Security Checks
critical
135457RHEL 7 : kernel (RHSA-2020:1465)NessusRed Hat Local Security Checks
high
135129EulerOS Virtualization for ARM 64 3.0.6.0 : kernel (EulerOS-SA-2020-1342)NessusHuawei Local Security Checks
critical
134902CentOS 7 : kernel (CESA-2020:0839)NessusCentOS Local Security Checks
high
134825RHEL 7 : kernel-rt (RHSA-2020:0839)NessusRed Hat Local Security Checks
high
134687Oracle Linux 7 : kernel (ELSA-2020-0834)NessusOracle Linux Local Security Checks
high
134671RHEL 7 : kernel (RHSA-2020:0834)NessusRed Hat Local Security Checks
high
134648Scientific Linux Security Update : kernel on SL7.x x86_64 (20200317)NessusScientific Linux Local Security Checks
high
134559openSUSE Security Update : the Linux Kernel (openSUSE-2020-336)NessusSuSE Local Security Checks
critical
134363SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:0613-1)NessusSuSE Local Security Checks
critical
134293SUSE SLES12 Security Update : kernel (SUSE-SU-2020:0584-1)NessusSuSE Local Security Checks
critical
134289SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:0560-1)NessusSuSE Local Security Checks
critical
133992EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1158)NessusHuawei Local Security Checks
critical
133591Oracle Linux 8 : kernel (ELSA-2020-0339)NessusOracle Linux Local Security Checks
critical
133480RHEL 8 : kernel (RHSA-2020:0339)NessusRed Hat Local Security Checks
critical
133477RHEL 8 : kernel-rt (RHSA-2020:0328)NessusRed Hat Local Security Checks
critical
132925SUSE SLES12 Security Update : kernel (SUSE-SU-2020:0093-1)NessusSuSE Local Security Checks
critical
132741Slackware 14.2 : Slackware 14.2 kernel (SSA:2020-008-01)NessusSlackware Local Security Checks
medium
132430SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3389-1)NessusSuSE Local Security Checks
critical
132394SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:3381-1)NessusSuSE Local Security Checks
critical
132390SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3379-1)NessusSuSE Local Security Checks
high
132236SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3316-1)NessusSuSE Local Security Checks
critical