Oval Definition:oval:com.ubuntu.bionic:def:201919990000000
Revision Date:2019-02-28Version:1
Title:CVE-2019-1999 on Ubuntu 18.04 LTS (bionic) - medium.
Description:In binder_alloc_free_page of binder_alloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-120025196. It was discovered that a race condition existed in the Binder IPC driver for the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-1999
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • NOT linux-image-4.15.0-51-generic package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-51-generic-lpae package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-51-lowlatency package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.15.0-51-generic package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.15.0-51-lowlatency package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-1040-aws package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.18.0-1018-azure package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.15.0-1033-gcp package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.18.0-21-generic package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.18.0-21-generic-lpae package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.18.0-21-lowlatency package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.18.0-21-snapdragon package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.18.0-21-generic package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.18.0-21-lowlatency package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-1035-kvm package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-extra-virtual package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-extra-virtual-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-extra-virtual-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic-lpae package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic-lpae-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic-lpae-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-lowlatency package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-lowlatency-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-lowlatency-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-virtual package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-virtual-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-virtual-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-aws package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-azure package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-gcp package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-extra-virtual-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-generic-lpae-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-lowlatency-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-snapdragon-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-virtual-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-kvm package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-oem package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-oracle package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-raspi2 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-snapdragon package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.15.0-1039-oem package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-unsigned-4.15.0-1014-oracle package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-1037-raspi2 package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-51-generic package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-51-lowlatency package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.18.0-1019-azure package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-1033-gcp package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.18.0-21-generic package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.18.0-21-lowlatency package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-1039-oem package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-1014-oracle package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
  • OR NOT linux-image-4.15.0-1054-snapdragon package in bionic, while related to the CVE in some way, is not affected (note: 'CONFIG_ANDROID_BINDER_IPC is disabled').
    • BACK