csaf_redhat - rhsa-2019

rhsa-2019_2405

Vulnerability from csaf_redhat

Published

2019-08-07 12:58

Modified

2024-09-13 19:53

Summary

Red Hat Security Advisory: kernel-rt security update

Notes

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): * kernel: broken permission and object lifetime handling for PTRACE_TRACEME (CVE-2019-13272) * kernel: hw: Spectre SWAPGS gadget vulnerability (CVE-2019-1125) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: broken permission and object lifetime handling for PTRACE_TRACEME (CVE-2019-13272)\n\n* kernel: hw: Spectre SWAPGS gadget vulnerability (CVE-2019-1125)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:2405",
        "url": "https://access.redhat.com/errata/RHSA-2019:2405"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/articles/4329821",
        "url": "https://access.redhat.com/articles/4329821"
      },
      {
        "category": "external",
        "summary": "1724389",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1724389"
      },
      {
        "category": "external",
        "summary": "1730895",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1730895"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2019/rhsa-2019_2405.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel-rt security update",
    "tracking": {
      "current_release_date": "2024-09-13T19:53:12+00:00",
      "generator": {
        "date": "2024-09-13T19:53:12+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "3.33.3"
        }
      },
      "id": "RHSA-2019:2405",
      "initial_release_date": "2019-08-07T12:58:31+00:00",
      "revision_history": [
        {
          "date": "2019-08-07T12:58:31+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-08-07T12:58:31+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-09-13T19:53:12+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Real Time for NFV (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux Real Time for NFV (v. 8)",
                  "product_id": "NFV-8.0.0.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::nfv"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Real Time (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux Real Time (v. 8)",
                  "product_id": "RT-8.0.0.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::realtime"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-modules@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-kvm-debuginfo@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-core@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-core@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-devel@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-kvm-debuginfo@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-modules@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-modules-extra@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                "product": {
                  "name": "kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_id": "kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-kvm@4.18.0-80.7.2.rt9.154.el8_0?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
                "product": {
                  "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
                  "product_id": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@4.18.0-80.7.2.rt9.154.el8_0?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src"
        },
        "product_reference": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
          "product_id": "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "NFV-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src"
        },
        "product_reference": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
          "product_id": "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        },
        "product_reference": "kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
        "relates_to_product_reference": "RT-8.0.0.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-1125",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2019-06-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1724389"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A Spectre gadget was found in the Linux kernel\u0027s implementation of system interrupts. An attacker with local access could use this information to reveal private data through a Spectre like side channel.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: hw: Spectre SWAPGS gadget vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article:  https://access.redhat.com/articles/4329821",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
          "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
          "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-1125"
        },
        {
          "category": "external",
          "summary": "RHBZ#1724389",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1724389"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-1125",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-1125"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-1125",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-1125"
        }
      ],
      "release_date": "2019-08-06T17:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2405"
        },
        {
          "category": "workaround",
          "details": "For mitigation related information, please refer to the Red Hat Knowledgebase article:  https://access.redhat.com/articles/4329821",
          "product_ids": [
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: hw: Spectre SWAPGS gadget vulnerability"
    },
    {
      "cve": "CVE-2019-13272",
      "cwe": {
        "id": "CWE-271",
        "name": "Privilege Dropping / Lowering Errors"
      },
      "discovery_date": "2019-07-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1730895"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way PTRACE_TRACEME functionality was handled in the Linux kernel. The kernel\u0027s implementation of ptrace can inadvertently grant elevated permissions to an attacker who can then abuse the relationship between the tracer and the process being traced. This flaw could allow a local, unprivileged user to increase their privileges on the system or cause a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: broken permission and object lifetime handling for PTRACE_TRACEME",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article:  https://access.redhat.com/articles/4292201",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
          "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
          "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
          "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-13272"
        },
        {
          "category": "external",
          "summary": "RHBZ#1730895",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1730895"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-13272",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-13272"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-13272",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-13272"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2019-07-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2405"
        },
        {
          "category": "workaround",
          "details": "For mitigation, please refer to the Red Hat Knowledgebase article:  https://access.redhat.com/articles/4292201",
          "product_ids": [
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "NFV-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "NFV-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.src",
            "RT-8.0.0.Z:kernel-rt-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-core-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debug-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-debuginfo-common-x86_64-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-devel-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-kvm-debuginfo-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64",
            "RT-8.0.0.Z:kernel-rt-modules-extra-0:4.18.0-80.7.2.rt9.154.el8_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2021-12-10T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: broken permission and object lifetime handling for PTRACE_TRACEME"
    }
  ]
}

cve-2019-1125

Vulnerability from cvelistv5

Published

2019-09-03 17:52

Modified

2024-08-04 18:06

Severity

5.6 (Medium) - cvssV3_1 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C

Summary

Windows Kernel Information Disclosure Vulnerability

References

URL	Tags
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1125	x_refsource_MISC
https://www.synology.com/security/advisory/Synology_SA_19_32	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2019:2600	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2609	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2695	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2696	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2730	vendor-advisory, x_refsource_REDHAT
https://kc.mcafee.com/corporate/index?page=content&id=SB10297	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2019:2900	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2899	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2975	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3011	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHBA-2019:2824	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3220	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHBA-2019:3248	vendor-advisory, x_refsource_REDHAT
http://packetstormsecurity.com/files/156337/SWAPGS-Attack-Proof-Of-Concept.html	x_refsource_MISC
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200408-01-swapgs-en	x_refsource_CONFIRM

Impacted products

Vendor	Product
Microsoft	Windows 10 Version 1703
Microsoft	Windows 10 Version 1803
Microsoft	Windows Server, version 1803 (Server Core Installation)
Microsoft	Windows 10 Version 1809
Microsoft	Windows Server 2019
Microsoft	Windows Server 2019 (Server Core installation)
Microsoft	Windows 10 Version 1709 for 32-bit Systems
Microsoft	Windows 10 Version 1709
Microsoft	Windows 10 Version 1903 for 32-bit Systems
Microsoft	Windows 10 Version 1903 for x64-based Systems
Microsoft	Windows 10 Version 1903 for ARM64-based Systems
Microsoft	Windows Server, version 1903 (Server Core installation)
Microsoft	Windows 10 Version 1507
Microsoft	Windows 10 Version 1607
Microsoft	Windows Server 2016
Microsoft	Windows Server 2016 (Server Core installation)
Microsoft	Windows 7
Microsoft	Windows 7 Service Pack 1
Microsoft	Windows 8.1
Microsoft	Windows Server 2008 Service Pack 2
Microsoft	Windows Server 2008 Service Pack 2 (Server Core installation)
Microsoft	Windows Server 2008 Service Pack 2
Microsoft	Windows Server 2008 R2 Systems Service Pack 1
Microsoft	Windows Server 2008 R2 Service Pack 1
Microsoft	Windows Server 2008 R2 Service Pack 1 (Server Core installation)
Microsoft	Windows Server 2012
Microsoft	Windows Server 2012 (Server Core installation)
Microsoft	Windows Server 2012 R2
Microsoft	Windows Server 2012 R2 (Server Core installation)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T18:06:31.693Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1125"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.synology.com/security/advisory/Synology_SA_19_32"
          },
          {
            "name": "RHSA-2019:2600",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2600"
          },
          {
            "name": "RHSA-2019:2609",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2609"
          },
          {
            "name": "RHSA-2019:2695",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2695"
          },
          {
            "name": "RHSA-2019:2696",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2696"
          },
          {
            "name": "RHSA-2019:2730",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2730"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10297"
          },
          {
            "name": "RHSA-2019:2900",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2900"
          },
          {
            "name": "RHSA-2019:2899",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2899"
          },
          {
            "name": "RHSA-2019:2975",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2975"
          },
          {
            "name": "RHSA-2019:3011",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3011"
          },
          {
            "name": "RHBA-2019:2824",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHBA-2019:2824"
          },
          {
            "name": "RHSA-2019:3220",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3220"
          },
          {
            "name": "RHBA-2019:3248",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHBA-2019:3248"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/156337/SWAPGS-Attack-Proof-Of-Concept.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200408-01-swapgs-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1703",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1803",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1803:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1803  (Server Core Installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1809",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows 10 Version 1709 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1709",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for x64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for ARM64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1903 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1507",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1607",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x86:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows 7",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 7 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:itanium:*"
          ],
          "platforms": [
            "32-bit Systems",
            "IA64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008  Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:itanium:*"
          ],
          "platforms": [
            "IA64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Systems Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2019-08-06T07:00:00+00:00",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries.\nTo exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The vulnerability would not allow an attacker to elevate user rights directly, but it could be used to obtain information that could be used to try to compromise the affected system further.\nOn January 3, 2018, Microsoft released an advisory and security updates\u202frelated to a newly-discovered class of hardware vulnerabilities (known as Spectre) involving speculative execution side channels that affect AMD, ARM, and Intel CPUs to varying degrees. This vulnerability, released on August 6, 2019, is a variant of the Spectre Variant 1 speculative execution side channel vulnerability and has been assigned CVE-2019-1125.\nMicrosoft released a security update on July 9, 2019 that addresses the vulnerability through a software change that mitigates how the CPU speculatively accesses memory. Note that this vulnerability does not require a microcode update from your device OEM.\n"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information Disclosure",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-29T16:50:27.042Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1125"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.synology.com/security/advisory/Synology_SA_19_32"
        },
        {
          "name": "RHSA-2019:2600",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2600"
        },
        {
          "name": "RHSA-2019:2609",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2609"
        },
        {
          "name": "RHSA-2019:2695",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2695"
        },
        {
          "name": "RHSA-2019:2696",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2696"
        },
        {
          "name": "RHSA-2019:2730",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2730"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10297"
        },
        {
          "name": "RHSA-2019:2900",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2900"
        },
        {
          "name": "RHSA-2019:2899",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2899"
        },
        {
          "name": "RHSA-2019:2975",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2975"
        },
        {
          "name": "RHSA-2019:3011",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3011"
        },
        {
          "name": "RHBA-2019:2824",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHBA-2019:2824"
        },
        {
          "name": "RHSA-2019:3220",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3220"
        },
        {
          "name": "RHBA-2019:3248",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHBA-2019:3248"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/156337/SWAPGS-Attack-Proof-Of-Concept.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200408-01-swapgs-en"
        }
      ],
      "title": "Windows Kernel Information Disclosure Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2019-1125",
    "datePublished": "2019-09-03T17:52:41",
    "dateReserved": "2018-11-26T00:00:00",
    "dateUpdated": "2024-08-04T18:06:31.693Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2019-13272

Vulnerability from cvelistv5

Published

2019-07-17 12:32

Modified

2024-08-04 23:49

Severity

Summary

In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.

References

URL	Tags
http://packetstormsecurity.com/files/153663/Linux-PTRACE_TRACEME-Broken-Permission-Object-Lifetime-Handling.html	x_refsource_MISC
https://bugs.chromium.org/p/project-zero/issues/detail?id=1903	x_refsource_MISC
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.1.17	x_refsource_MISC
https://github.com/torvalds/linux/commit/6994eefb0053799d2e07cd140df6c2ea106c41ee	x_refsource_MISC
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6994eefb0053799d2e07cd140df6c2ea106c41ee	x_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=1140671	x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=1730895	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OGRK5LYWBJ4E4SRI4DKX367NHYSI3VOH/	vendor-advisory, x_refsource_FEDORA
https://www.debian.org/security/2019/dsa-4484	vendor-advisory, x_refsource_DEBIAN
https://seclists.org/bugtraq/2019/Jul/30	mailing-list, x_refsource_BUGTRAQ
https://seclists.org/bugtraq/2019/Jul/33	mailing-list, x_refsource_BUGTRAQ
https://lists.debian.org/debian-lts-announce/2019/07/msg00022.html	mailing-list, x_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2019/07/msg00023.html	mailing-list, x_refsource_MLIST
http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-20190806-0001/	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2019:2405	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2411	vendor-advisory, x_refsource_REDHAT
https://usn.ubuntu.com/4093-1/	vendor-advisory, x_refsource_UBUNTU
https://usn.ubuntu.com/4094-1/	vendor-advisory, x_refsource_UBUNTU
https://usn.ubuntu.com/4095-1/	vendor-advisory, x_refsource_UBUNTU
http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html	x_refsource_MISC
https://support.f5.com/csp/article/K91025336	x_refsource_CONFIRM
https://usn.ubuntu.com/4117-1/	vendor-advisory, x_refsource_UBUNTU
https://usn.ubuntu.com/4118-1/	vendor-advisory, x_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2019:2809	vendor-advisory, x_refsource_REDHAT
https://support.f5.com/csp/article/K91025336?utm_source=f5support&amp%3Butm_medium=RSS	x_refsource_CONFIRM
http://packetstormsecurity.com/files/154957/Linux-Polkit-pkexec-Helper-PTRACE_TRACEME-Local-Root.html	x_refsource_MISC
http://packetstormsecurity.com/files/156929/Linux-PTRACE_TRACEME-Local-Root.html	x_refsource_MISC
http://packetstormsecurity.com/files/165051/Linux-Kernel-5.1.x-PTRACE_TRACEME-pkexec-Local-Privilege-Escalation.html	x_refsource_MISC

Impacted products

Vendor	Product
n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T23:49:24.327Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/153663/Linux-PTRACE_TRACEME-Broken-Permission-Object-Lifetime-Handling.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1903"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.1.17"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/torvalds/linux/commit/6994eefb0053799d2e07cd140df6c2ea106c41ee"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6994eefb0053799d2e07cd140df6c2ea106c41ee"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.suse.com/show_bug.cgi?id=1140671"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1730895"
          },
          {
            "name": "FEDORA-2019-a95015e60f",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OGRK5LYWBJ4E4SRI4DKX367NHYSI3VOH/"
          },
          {
            "name": "DSA-4484",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2019/dsa-4484"
          },
          {
            "name": "20190722 [SECURITY] [DSA 4484-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Jul/30"
          },
          {
            "name": "20190722 [slackware-security] Slackware 14.2 kernel (SSA:2019-202-01)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Jul/33"
          },
          {
            "name": "[debian-lts-announce] 20190723 [SECURITY] [DLA 1862-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00022.html"
          },
          {
            "name": "[debian-lts-announce] 20190723 [SECURITY] [DLA 1863-1] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00023.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20190806-0001/"
          },
          {
            "name": "RHSA-2019:2405",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2405"
          },
          {
            "name": "RHSA-2019:2411",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2411"
          },
          {
            "name": "USN-4093-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4093-1/"
          },
          {
            "name": "USN-4094-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4094-1/"
          },
          {
            "name": "USN-4095-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4095-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K91025336"
          },
          {
            "name": "USN-4117-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4117-1/"
          },
          {
            "name": "USN-4118-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4118-1/"
          },
          {
            "name": "RHSA-2019:2809",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2809"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K91025336?utm_source=f5support\u0026amp%3Butm_medium=RSS"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/154957/Linux-Polkit-pkexec-Helper-PTRACE_TRACEME-Local-Root.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/156929/Linux-PTRACE_TRACEME-Local-Root.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/165051/Linux-Kernel-5.1.x-PTRACE_TRACEME-pkexec-Local-Privilege-Escalation.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit\u0027s pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-11-23T18:06:10",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/153663/Linux-PTRACE_TRACEME-Broken-Permission-Object-Lifetime-Handling.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1903"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.1.17"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/torvalds/linux/commit/6994eefb0053799d2e07cd140df6c2ea106c41ee"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6994eefb0053799d2e07cd140df6c2ea106c41ee"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.suse.com/show_bug.cgi?id=1140671"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1730895"
        },
        {
          "name": "FEDORA-2019-a95015e60f",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OGRK5LYWBJ4E4SRI4DKX367NHYSI3VOH/"
        },
        {
          "name": "DSA-4484",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2019/dsa-4484"
        },
        {
          "name": "20190722 [SECURITY] [DSA 4484-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Jul/30"
        },
        {
          "name": "20190722 [slackware-security] Slackware 14.2 kernel (SSA:2019-202-01)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Jul/33"
        },
        {
          "name": "[debian-lts-announce] 20190723 [SECURITY] [DLA 1862-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00022.html"
        },
        {
          "name": "[debian-lts-announce] 20190723 [SECURITY] [DLA 1863-1] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00023.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20190806-0001/"
        },
        {
          "name": "RHSA-2019:2405",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2405"
        },
        {
          "name": "RHSA-2019:2411",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2411"
        },
        {
          "name": "USN-4093-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4093-1/"
        },
        {
          "name": "USN-4094-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4094-1/"
        },
        {
          "name": "USN-4095-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4095-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/csp/article/K91025336"
        },
        {
          "name": "USN-4117-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4117-1/"
        },
        {
          "name": "USN-4118-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4118-1/"
        },
        {
          "name": "RHSA-2019:2809",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2809"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/csp/article/K91025336?utm_source=f5support\u0026amp%3Butm_medium=RSS"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/154957/Linux-Polkit-pkexec-Helper-PTRACE_TRACEME-Local-Root.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/156929/Linux-PTRACE_TRACEME-Local-Root.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/165051/Linux-Kernel-5.1.x-PTRACE_TRACEME-pkexec-Local-Privilege-Escalation.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2019-13272",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit\u0027s pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://packetstormsecurity.com/files/153663/Linux-PTRACE_TRACEME-Broken-Permission-Object-Lifetime-Handling.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/153663/Linux-PTRACE_TRACEME-Broken-Permission-Object-Lifetime-Handling.html"
            },
            {
              "name": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1903",
              "refsource": "MISC",
              "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1903"
            },
            {
              "name": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.1.17",
              "refsource": "MISC",
              "url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.1.17"
            },
            {
              "name": "https://github.com/torvalds/linux/commit/6994eefb0053799d2e07cd140df6c2ea106c41ee",
              "refsource": "MISC",
              "url": "https://github.com/torvalds/linux/commit/6994eefb0053799d2e07cd140df6c2ea106c41ee"
            },
            {
              "name": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6994eefb0053799d2e07cd140df6c2ea106c41ee",
              "refsource": "MISC",
              "url": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6994eefb0053799d2e07cd140df6c2ea106c41ee"
            },
            {
              "name": "https://bugzilla.suse.com/show_bug.cgi?id=1140671",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1140671"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1730895",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1730895"
            },
            {
              "name": "FEDORA-2019-a95015e60f",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGRK5LYWBJ4E4SRI4DKX367NHYSI3VOH/"
            },
            {
              "name": "DSA-4484",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2019/dsa-4484"
            },
            {
              "name": "20190722 [SECURITY] [DSA 4484-1] linux security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Jul/30"
            },
            {
              "name": "20190722 [slackware-security] Slackware 14.2 kernel (SSA:2019-202-01)",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Jul/33"
            },
            {
              "name": "[debian-lts-announce] 20190723 [SECURITY] [DLA 1862-1] linux security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00022.html"
            },
            {
              "name": "[debian-lts-announce] 20190723 [SECURITY] [DLA 1863-1] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00023.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20190806-0001/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20190806-0001/"
            },
            {
              "name": "RHSA-2019:2405",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2405"
            },
            {
              "name": "RHSA-2019:2411",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2411"
            },
            {
              "name": "USN-4093-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4093-1/"
            },
            {
              "name": "USN-4094-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4094-1/"
            },
            {
              "name": "USN-4095-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4095-1/"
            },
            {
              "name": "http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html"
            },
            {
              "name": "https://support.f5.com/csp/article/K91025336",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/csp/article/K91025336"
            },
            {
              "name": "USN-4117-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4117-1/"
            },
            {
              "name": "USN-4118-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4118-1/"
            },
            {
              "name": "RHSA-2019:2809",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2809"
            },
            {
              "name": "https://support.f5.com/csp/article/K91025336?utm_source=f5support\u0026amp;utm_medium=RSS",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/csp/article/K91025336?utm_source=f5support\u0026amp;utm_medium=RSS"
            },
            {
              "name": "http://packetstormsecurity.com/files/154957/Linux-Polkit-pkexec-Helper-PTRACE_TRACEME-Local-Root.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/154957/Linux-Polkit-pkexec-Helper-PTRACE_TRACEME-Local-Root.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/156929/Linux-PTRACE_TRACEME-Local-Root.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/156929/Linux-PTRACE_TRACEME-Local-Root.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/165051/Linux-Kernel-5.1.x-PTRACE_TRACEME-pkexec-Local-Privilege-Escalation.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/165051/Linux-Kernel-5.1.x-PTRACE_TRACEME-pkexec-Local-Privilege-Escalation.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2019-13272",
    "datePublished": "2019-07-17T12:32:55",
    "dateReserved": "2019-07-04T00:00:00",
    "dateUpdated": "2024-08-04T23:49:24.327Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Action not permitted

rhsa-2019_2405

Vulnerability from csaf_redhat

cve-2019-1125

Vulnerability from cvelistv5

cve-2019-13272

Vulnerability from cvelistv5

Tags