CVE-2019-3882

A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS). Versions 3.10, 4.14 and 4.18 are vulnerable.

CVSS v3 5.5 MEDIUM
CVSS v2.0 4.9 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

4.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 3.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00037.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00043.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html	Mailing List Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2029	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2043	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3309	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3517	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3882	Issue Tracking Patch Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/05/msg00041.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/05/msg00042.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/08/msg00017.html	Mailing List Third Party Advisory
https://seclists.org/bugtraq/2019/Aug/18	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20190517-0005/	Third Party Advisory
https://usn.ubuntu.com/3979-1/	Third Party Advisory
https://usn.ubuntu.com/3980-1/	Third Party Advisory
https://usn.ubuntu.com/3980-2/	Third Party Advisory
https://usn.ubuntu.com/3981-1/	Third Party Advisory
https://usn.ubuntu.com/3981-2/	Third Party Advisory
https://usn.ubuntu.com/3982-1/	Third Party Advisory
https://usn.ubuntu.com/3982-2/	Third Party Advisory
https://www.debian.org/security/2019/dsa-4497	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel:3.10:::::::*
	cpe:2.3:o:linux:linux_kernel:4.14:::::::*
	cpe:2.3:o:linux:linux_kernel:4.18:::::::*

Configuration 2 (hide)

cpe:2.3:o:fedoraproject:fedora:*:*:*:*:*:*:*:*

Configuration 3 (hide)

OR	cpe:2.3:o:debian:debian_linux:8.0:::::::*
	cpe:2.3:o:debian:debian_linux:9.0:::::::*
	cpe:2.3:o:debian:debian_linux:10.0:::::::*

Configuration 4 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:19.04:::::::*

Configuration 5 (hide)

OR	cpe:2.3:o:opensuse:leap:15.0:::::::*
	cpe:2.3:o:opensuse:leap:15.1:::::::*
	cpe:2.3:o:opensuse:leap:42.3:::::::*

Configuration 6 (hide)

OR	cpe:2.3:a:netapp:active_iq_unified_manager_for_vmware_vsphere::::::::
	cpe:2.3:a:netapp:hci_management_node:-:::::::*
	cpe:2.3:a:netapp:snapprotect:-:::::::*
	cpe:2.3:a:netapp:solidfire:-:::::::*
	cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap_for_vmware_vsphere::::::::
	cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap::::::::
	cpe:2.3:a:netapp:virtual_storage_console_for_vmware_vsphere::::::::

Configuration 7 (hide)

AND

cpe:2.3:o:netapp:cn1610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:cn1610:-:*:*:*:*:*:*:*

History

12 Feb 2023, 23:38

Type	Values Removed	Values Added
Summary	A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS).	A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS). Versions 3.10, 4.14 and 4.18 are vulnerable.
References	~~{'url': 'https://bugzilla.redhat.com/show_bug.cgi?id=1689426', 'name': 'https://bugzilla.redhat.com/show_bug.cgi?id=1689426', 'tags': [], 'refsource': 'MISC'}~~ ~~{'url': 'https://access.redhat.com/security/cve/CVE-2019-3882', 'name': 'https://access.redhat.com/security/cve/CVE-2019-3882', 'tags': [], 'refsource': 'MISC'}~~

02 Feb 2023, 21:18

Type	Values Removed	Values Added
References		(MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1689426 - (MISC) https://access.redhat.com/security/cve/CVE-2019-3882 -
Summary	A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS). Versions 3.10, 4.14 and 4.18 are vulnerable.	A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS).

Information

Published : 2019-04-24 16:29

Updated : 2023-12-10 12:59

NVD link : CVE-2019-3882

Mitre link : CVE-2019-3882

CVE.ORG link : CVE-2019-3882

JSON object : View

Products Affected

netapp

vasa_provider_for_clustered_data_ontap
snapprotect
virtual_storage_console_for_vmware_vsphere
solidfire
hci_management_node
active_iq_unified_manager_for_vmware_vsphere
cn1610
cn1610_firmware
storage_replication_adapter_for_clustered_data_ontap_for_vmware_vsphere

opensuse

leap

debian

debian_linux

linux

linux_kernel

canonical

ubuntu_linux

fedoraproject

fedora

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

5.5 /10

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

4.9 /10

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

JSON object

Attach tags to CVE-2019-3882

5.5^/10

4.9^/10

Attach tags to `CVE-2019-3882`