| Revision Date: | 2019-03-21 | Version: | 1 | | Title: | CVE-2018-19985 on Ubuntu 18.10 (cosmic) - low. | | Description: | The function hso_get_config_data in drivers/net/usb/hso.c in the Linux kernel through 4.19.8 reads if_num from the USB device (as a u8) and uses it to index a small array, resulting in an object out-of-bounds (OOB) read that potentially allows arbitrary read in the kernel address space. Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this to cause a denial of service (system crash).
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2018-19985
| | Platform(s): | Ubuntu 18.10
| Product(s): | | | Definition Synopsis | | Ubuntu 18.10 (cosmic) is installed. AND Package Information
linux: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-aws: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-azure: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-gcp: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-kvm: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-meta: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-meta-aws: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-meta-azure: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-meta-gcp: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-meta-kvm: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-meta-oem: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-meta-raspi2: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-oem: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-oracle: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-raspi2: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-signed: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-signed-azure: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-signed-gcp: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
OR linux-signed-oem: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
|
|