CVE-2019-0155: incomplete fix for 64-bit x86 kernels
Bug #1852141 reported by
Tyler Hicks
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Critical
|
Unassigned | ||
Xenial |
Fix Released
|
Critical
|
Tyler Hicks | ||
Bionic |
Fix Released
|
Critical
|
Tyler Hicks | ||
Disco |
Fix Released
|
Critical
|
Tyler Hicks | ||
Eoan |
Fix Released
|
Critical
|
Tyler Hicks |
Bug Description
[Impact]
The initial set of Ubuntu kernel updates to address CVE-2019-0155 are not complete for 64-bit x86 kernels (amd64). The 32-bit x86 kernel (i386) updates are complete. It may be possible for an attacker to bypass the mitigations on 64-bit systems.
The following upstream patch is needed:
[Test Case]
Upstream has ran the proposed fix through their regression test suite. We don't have a reproducer for CVE-2019-0155 so the test case is simply to ensure that desktop graphics continue to work.
[Regression Potential]
Low, the fix is simple, tested, and, AAUI, the affected code path should only be legitimately used by the test suite.
CVE References
Changed in linux (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in linux (Ubuntu Bionic): | |
status: | New → In Progress |
Changed in linux (Ubuntu Disco): | |
status: | New → In Progress |
Changed in linux (Ubuntu Eoan): | |
status: | New → In Progress |
Changed in linux (Ubuntu Xenial): | |
importance: | Undecided → Critical |
Changed in linux (Ubuntu Bionic): | |
importance: | Undecided → Critical |
Changed in linux (Ubuntu Disco): | |
importance: | Undecided → Critical |
Changed in linux (Ubuntu Eoan): | |
importance: | Undecided → Critical |
assignee: | nobody → Tyler Hicks (tyhicks) |
Changed in linux (Ubuntu Disco): | |
assignee: | nobody → Tyler Hicks (tyhicks) |
Changed in linux (Ubuntu Bionic): | |
assignee: | nobody → Tyler Hicks (tyhicks) |
Changed in linux (Ubuntu Xenial): | |
assignee: | nobody → Tyler Hicks (tyhicks) |
summary: |
- incomplete fix + CVE-2019-0155: incomplete fix for 64-bit x86 kernels |
description: | updated |
Changed in linux (Ubuntu Eoan): | |
status: | In Progress → Fix Committed |
Changed in linux (Ubuntu Disco): | |
status: | In Progress → Fix Committed |
Changed in linux (Ubuntu Bionic): | |
status: | In Progress → Fix Committed |
Changed in linux (Ubuntu Xenial): | |
status: | In Progress → Fix Committed |
description: | updated |
description: | updated |
information type: | Private Security → Public Security |
To post a comment you must log in.
This bug was fixed in the package linux - 5.3.0-23.25
---------------
linux (5.3.0-23.25) eoan; urgency=medium
* Incomplete i915 fix for 64-bit x86 kernels (LP: #1852141) // CVE-2019-0155
- SAUCE: drm/i915/cmdparser: Fix jump whitelist clearing
-- Stefan Bader <email address hidden> Tue, 12 Nov 2019 09:46:03 +0100