CVE-2019-13351

EUVD-2019-4854
posix/JackSocket.cpp in libjack in JACK2 1.9.1 through 1.9.12 (as distributed with alsa-plugins 1.1.7 and later) has a "double file descriptor close" issue during a failed connection attempt when jackd2 is not running. Exploitation success depends on multithreaded timing of that double close, which can result in unintended information disclosure, crashes, or file corruption due to having the wrong file associated with the file descriptor.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.1 HIGH
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
Affected Products (NVD)
VendorProductVersion
jackaudiojack2
1.9.1 ≤
𝑥
≤ 1.9.12
alsa-projectalsa
𝑥
≤ 1.1.7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
jackd2
bookworm
1.9.21~dfsg-3
fixed
bullseye
1.9.17~dfsg-1
fixed
buster
no-dsa
jessie
postponed
sid
1.9.22~dfsg-3
fixed
stretch
no-dsa
trixie
1.9.22~dfsg-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
jackd2
bionic
needed
cosmic
ignored
disco
ignored
eoan
ignored
focal
Fixed 1.9.12~dfsg-2ubuntu2
released
groovy
Fixed 1.9.12~dfsg-2ubuntu2
released
hirsute
Fixed 1.9.12~dfsg-2ubuntu2
released
impish
Fixed 1.9.12~dfsg-2ubuntu2
released
jammy
Fixed 1.9.12~dfsg-2ubuntu2
released
kinetic
Fixed 1.9.12~dfsg-2ubuntu2
released
lunar
Fixed 1.9.12~dfsg-2ubuntu2
released
mantic
Fixed 1.9.12~dfsg-2ubuntu2
released
noble
Fixed 1.9.12~dfsg-2ubuntu2
released
trusty
dne
xenial
Fixed 1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1
released
References
https://github.com/jackaudio/jack2/pull/480
https://github.com/xbmc/xbmc/issues/16258
https://github.com/jackaudio/jack2/pull/480
https://github.com/xbmc/xbmc/issues/16258