CVE-2019-13351

posix/JackSocket.cpp in libjack in JACK2 1.9.1 through 1.9.12 (as distributed with alsa-plugins 1.1.7 and later) has a "double file descriptor close" issue during a failed connection attempt when jackd2 is not running. Exploitation success depends on multithreaded timing of that double close, which can result in unintended information disclosure, crashes, or file corruption due to having the wrong file associated with the file descriptor.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.1 HIGH
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 49%
VendorProductVersion
jackaudiojack2
1.9.1 ≤
𝑥
≤ 1.9.12
alsa-projectalsa
𝑥
≤ 1.1.7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
jackd2
bullseye
1.9.17~dfsg-1
fixed
buster
no-dsa
stretch
no-dsa
jessie
postponed
bookworm
1.9.21~dfsg-3
fixed
sid
1.9.22~dfsg-3
fixed
trixie
1.9.22~dfsg-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
jackd2
noble
Fixed 1.9.12~dfsg-2ubuntu2
released
mantic
Fixed 1.9.12~dfsg-2ubuntu2
released
lunar
Fixed 1.9.12~dfsg-2ubuntu2
released
kinetic
Fixed 1.9.12~dfsg-2ubuntu2
released
jammy
Fixed 1.9.12~dfsg-2ubuntu2
released
impish
Fixed 1.9.12~dfsg-2ubuntu2
released
hirsute
Fixed 1.9.12~dfsg-2ubuntu2
released
groovy
Fixed 1.9.12~dfsg-2ubuntu2
released
focal
Fixed 1.9.12~dfsg-2ubuntu2
released
eoan
ignored
disco
ignored
cosmic
ignored
bionic
needed
xenial
Fixed 1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1
released
trusty
dne
References
https://github.com/jackaudio/jack2/pull/480
https://github.com/xbmc/xbmc/issues/16258
https://github.com/jackaudio/jack2/pull/480
https://github.com/xbmc/xbmc/issues/16258