CVE-2019-3900

MEDIUM

Description

An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario.

References

http://www.securityfocus.com/bid/108076

https://access.redhat.com/errata/RHSA-2019:1973

https://access.redhat.com/errata/RHSA-2019:2029

https://access.redhat.com/errata/RHSA-2019:2043

https://access.redhat.com/errata/RHSA-2019:3220

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3900

https://lists.debian.org/debian-lts-announce/2019/08/msg00016.html

https://lists.debian.org/debian-lts-announce/2019/08/msg00017.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/AYTZH6QCNITK7353S6RCRT2PQHZSDPXD/

https://lists.fedoraproject.org/archives/list/[email protected]/message/RI3WXXM5URTZSR3RVEKO6MDXDFIKTZ5R/

https://lists.fedoraproject.org/archives/list/[email protected]/message/TOFNJA5NNVXQ6AV6KGZB677JIVXAMJHT/

https://seclists.org/bugtraq/2019/Aug/18

https://security.netapp.com/advisory/ntap-20190517-0005/

https://usn.ubuntu.com/4114-1/

https://usn.ubuntu.com/4115-1/

https://usn.ubuntu.com/4116-1/

https://usn.ubuntu.com/4117-1/

https://usn.ubuntu.com/4118-1/

https://www.debian.org/security/2019/dsa-4497

https://www.spinics.net/lists/kernel/msg3111012.html

Details

Source: MITRE

Published: 2019-04-25

Updated: 2019-05-17

Type: CWE-400

Risk Information

CVSS v2.0

Base Score: 6.8

Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 8

Severity: MEDIUM

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

ID	Name	Product	Family	Severity
134387	EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1186)	Nessus	Huawei Local Security Checks	critical
134312	NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2020-0021)	Nessus	NewStart CGSL Local Security Checks	high
133221	RHEL 8 : kernel (RHSA-2020:0204)	Nessus	Red Hat Local Security Checks	critical
132495	NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0253)	Nessus	NewStart CGSL Local Security Checks	critical
132474	NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0247)	Nessus	NewStart CGSL Local Security Checks	critical
131675	RHEL 7 : kernel (RHSA-2019:4058)	Nessus	Red Hat Local Security Checks	critical
131375	RHEL 7 : kernel (RHSA-2019:3967)	Nessus	Red Hat Local Security Checks	high
131227	Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-089)	Nessus	Virtuozzo Local Security Checks	high
131006	Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20191113)	Nessus	Scientific Linux Local Security Checks	low
130993	Oracle Linux 6 : kernel (ELSA-2019-3836)	Nessus	Oracle Linux Local Security Checks	low
130978	CentOS 6 : kernel (CESA-2019:3836)	Nessus	CentOS Local Security Checks	low
130928	RHEL 6 : kernel (RHSA-2019:3836)	Nessus	Red Hat Local Security Checks	low
130751	Slackware 14.2 : Slackware 14.2 kernel (SSA:2019-311-01)	Nessus	Slackware Local Security Checks	critical
130547	RHEL 8 : kernel (RHSA-2019:3517)	Nessus	Red Hat Local Security Checks	high
130526	RHEL 8 : kernel-rt (RHSA-2019:3309)	Nessus	Red Hat Local Security Checks	high
130376	RHEL 7 : kernel (RHSA-2019:3220)	Nessus	Red Hat Local Security Checks	medium
129920	NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0183)	Nessus	NewStart CGSL Local Security Checks	critical
129900	NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0180)	Nessus	NewStart CGSL Local Security Checks	critical
128680	Ubuntu 16.04 LTS / 18.04 LTS : linux, linux-aws, linux-aws-hwe, linux-azure, linux-gcp, linux-gke-4.15, (USN-4115-2)	Nessus	Ubuntu Local Security Checks	critical
128651	CentOS 7 : kernel (CESA-2019:2029)	Nessus	CentOS Local Security Checks	high
128478	Ubuntu 16.04 LTS / 18.04 LTS : linux-aws vulnerabilities (USN-4118-1)	Nessus	Ubuntu Local Security Checks	critical
128477	Ubuntu 19.04 : linux-aws vulnerabilities (USN-4117-1)	Nessus	Ubuntu Local Security Checks	high
128476	Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities (USN-4116-1)	Nessus	Ubuntu Local Security Checks	medium
128475	Ubuntu 16.04 LTS / 18.04 LTS : linux, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, (USN-4115-1)	Nessus	Ubuntu Local Security Checks	critical
128474	Ubuntu 18.04 LTS / 19.04 : linux, linux-azure, linux-gcp, linux-gke-5.0, linux-hwe, linux-kvm, (USN-4114-1)	Nessus	Ubuntu Local Security Checks	medium
128226	Scientific Linux Security Update : kernel on SL7.x x86_64 (20190806)	Nessus	Scientific Linux Local Security Checks	high
127921	Debian DLA-1885-1 : linux-4.9 security update	Nessus	Debian Local Security Checks	high
127867	Debian DSA-4497-1 : linux - security update	Nessus	Debian Local Security Checks	high
127866	Debian DLA-1884-1 : linux security update	Nessus	Debian Local Security Checks	high
127655	RHEL 7 : kernel-rt (RHSA-2019:2043)	Nessus	Red Hat Local Security Checks	high
127650	RHEL 7 : kernel (RHSA-2019:2029)	Nessus	Red Hat Local Security Checks	high
127643	RHEL 7 : kernel-alt (RHSA-2019:1973)	Nessus	Red Hat Local Security Checks	medium
127060	Amazon Linux AMI : kernel (ALAS-2019-1232)	Nessus	Amazon Linux Local Security Checks	medium
126956	Amazon Linux 2 : kernel (ALAS-2019-1232)	Nessus	Amazon Linux Local Security Checks	medium
125588	EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2019-1636)	Nessus	Huawei Local Security Checks	high
124661	Fedora 28 : kernel (2019-a6cd583a8d)	Nessus	Fedora Local Security Checks	high
124572	Fedora 30 : kernel (2019-87d807d7cb)	Nessus	Fedora Local Security Checks	medium
124571	Fedora 29 : kernel (2019-8219efa9f6)	Nessus	Fedora Local Security Checks	high