CVE-2019-11884

The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.

CVSS v3 3.3 LOW
CVSS v2.0 2.1 LOW

3.3^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00037.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00043.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html	Mailing List Third Party Advisory
http://www.securityfocus.com/bid/108299	Broken Link Third Party Advisory VDB Entry
https://access.redhat.com/errata/RHSA-2019:3309	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3517	Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0740	Third Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.15	Release Notes Vendor Advisory
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a1616a5ac99ede5d605047a9012481ce7ff18b16	Patch Vendor Advisory
https://github.com/torvalds/linux/commit/a1616a5ac99ede5d605047a9012481ce7ff18b16	Patch Vendor Advisory
https://lists.debian.org/debian-lts-announce/2019/06/msg00010.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/06/msg00011.html	Mailing List Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPWHQHNM2MSGO3FDJVIQXQNKYVR7TV45/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LAYXGGJUUYPOMCBZGGDCUZFLUU3JOZG5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF2PDXUGOFEOTPVEACKFIHQB6O4XUIZD/
https://seclists.org/bugtraq/2019/Jun/26	Mailing List Third Party Advisory
https://usn.ubuntu.com/4068-1/	Third Party Advisory
https://usn.ubuntu.com/4068-2/	Third Party Advisory
https://usn.ubuntu.com/4069-1/	Third Party Advisory
https://usn.ubuntu.com/4069-2/	Third Party Advisory
https://usn.ubuntu.com/4076-1/	Third Party Advisory
https://usn.ubuntu.com/4118-1/	Third Party Advisory
https://www.debian.org/security/2019/dsa-4465	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:fedoraproject:fedora:28:::::::*
	cpe:2.3:o:fedoraproject:fedora:29:::::::*
	cpe:2.3:o:fedoraproject:fedora:30:::::::*

Configuration 3 (hide)

OR	cpe:2.3:o:debian:debian_linux:8.0:::::::*
	cpe:2.3:o:debian:debian_linux:9.0:::::::*

Configuration 4 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:19.04:::::::*

Configuration 5 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.1:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_real_time:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:::::::*

Configuration 6 (hide)

OR	cpe:2.3:o:opensuse:leap:15.0:::::::*
	cpe:2.3:o:opensuse:leap:15.1:::::::*
	cpe:2.3:o:opensuse:leap:42.3:::::::*

History

No history.

Information

Published : 2019-05-10 22:29

Updated : 2023-11-07 03:03

NVD link : CVE-2019-11884

Mitre link : CVE-2019-11884

CVE.ORG link : CVE-2019-11884

JSON object : View

Products Affected

redhat

enterprise_linux_for_real_time_tus
enterprise_linux_server_aus
enterprise_linux_for_real_time
enterprise_linux_for_real_time_for_nfv_tus
enterprise_linux_eus
enterprise_linux
enterprise_linux_server_tus

canonical

ubuntu_linux

fedoraproject

fedora

opensuse

leap

linux

linux_kernel

debian

debian_linux

CWE

NVD-CWE-noinfo

3.3 /10

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

2.1 /10

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2019-11884

3.3^/10

2.1^/10

Attach tags to `CVE-2019-11884`