CVE-2019-13648 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 25%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	𝑥 ≤ 5.2.1

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.106-3 fixed
bookworm (security)	6.1.112-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.226-1 fixed
sid	6.11.5-1 fixed
trixie	6.11.5-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

linux

bionic	Fixed 4.15.0-60.67 released
disco	Fixed 5.0.0-27.28 released
eoan	not-affected
trusty	ignored
xenial	Fixed 4.4.0-161.189 released

linux-aws

bionic	not-affected
disco	not-affected
eoan	not-affected
trusty	ignored
xenial	not-affected

linux-aws-5.0

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-aws-hwe

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	not-affected

linux-azure

bionic	not-affected
disco	not-affected
eoan	not-affected
trusty	ignored
xenial	not-affected

linux-azure-5.3

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-azure-edge

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	not-affected

linux-euclid

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	not-affected

linux-flo

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	not-affected

linux-gcp

bionic	not-affected
disco	not-affected
eoan	not-affected
trusty	dne
xenial	not-affected

linux-gcp-5.3

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-gcp-edge

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-gke

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	not-affected

linux-gke-4.15

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-gke-5.0

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-goldfish

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	not-affected

linux-grouper

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-hwe

bionic	Fixed 5.0.0-27.28~18.04.1 released
disco	dne
eoan	dne
trusty	dne
xenial	Fixed 4.15.0-60.67~16.04.1 released

linux-hwe-edge

bionic	ignored
disco	dne
eoan	dne
trusty	dne
xenial	Fixed 4.15.0-60.67~16.04.1 released

linux-kvm

bionic	not-affected
disco	not-affected
eoan	not-affected
trusty	dne
xenial	not-affected

linux-lts-trusty

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-lts-utopic

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-lts-vivid

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-lts-wily

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-lts-xenial

bionic	dne
disco	dne
eoan	dne
trusty	ignored
xenial	dne

linux-maguro

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-mako

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	not-affected

linux-manta

bionic	dne
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-oem

bionic	not-affected
disco	not-affected
eoan	not-affected
trusty	dne
xenial	not-affected

linux-oem-5.4

bionic	dne
eoan	dne
trusty	dne
xenial	dne

linux-oem-osp1

bionic	Fixed 5.0.0-1020.22 released
disco	ignored
eoan	Fixed 5.0.0-1022.24 released
trusty	dne
xenial	dne

linux-oracle

bionic	not-affected
disco	not-affected
eoan	not-affected
trusty	dne
xenial	not-affected

linux-oracle-5.0

bionic	not-affected
disco	dne
eoan	dne
trusty	dne
xenial	dne

linux-raspi2

bionic	not-affected
disco	not-affected
eoan	not-affected
trusty	dne
xenial	not-affected

linux-raspi2-5.3

bionic	not-affected
eoan	dne
trusty	dne
xenial	dne

linux-snapdragon

bionic	not-affected
disco	not-affected
eoan	dne
trusty	dne
xenial	not-affected

Common Weakness Enumeration

CWE-399 -

References

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00055.html

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00056.html

http://packetstormsecurity.com/files/154059/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html

http://www.openwall.com/lists/oss-security/2019/07/30/1

https://git.kernel.org/torvalds/c/f16d80b75a096c52354c6e0a574993f3b0dfbdfe

https://lists.debian.org/debian-lts-announce/2019/08/msg00017.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GRK2MW223KQZ76DKEF2BZFN6TCXLZLDS/

https://patchwork.ozlabs.org/patch/1133904/

https://seclists.org/bugtraq/2019/Aug/13

https://seclists.org/bugtraq/2019/Aug/18

https://seclists.org/bugtraq/2019/Aug/26

https://security.netapp.com/advisory/ntap-20190806-0001/

https://usn.ubuntu.com/4114-1/

https://usn.ubuntu.com/4115-1/

https://usn.ubuntu.com/4116-1/

https://www.debian.org/security/2019/dsa-4495

https://www.debian.org/security/2019/dsa-4497