CVE-2019-14615

Description

Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
• v2.0•LOW•Score: 1.9AV:L/AC:M/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 4.50%• Percentile: 89%

Affected Systems

• canonical•ubuntu_linux

  14.04 | 16.04 | 18.04 | 19.10

• intel•atom_e3805

  na

• intel•atom_e3815

  na

• intel•atom_e3825

  na

• intel•atom_e3826

  na

• intel•atom_e3827

  na

• intel•atom_e3845

  na

• intel•atom_e620

  na

• intel•atom_e620t

  na

• intel•atom_e640

  na

• intel•atom_e640t

  na

• intel•atom_e660

  na

• intel•atom_e660t

  na

• intel•atom_e680

  na

• intel•atom_e680t

  na

• intel•atom_x3-c3130

  na

• intel•atom_x3-c3200rk

  na

• intel•atom_x3-c3230rk

  na

• intel•atom_x3-c3405

  na

• intel•atom_x3-c3445

  na

• intel•atom_x5-z8300

  na

• intel•atom_x5-z8330

  na

• intel•atom_x5-z8500

  na

• intel•atom_x7-z8700

  na

• intel•atom_z2420

  na

• intel•atom_z2460

  na

• intel•atom_z2480

  na

• intel•atom_z2520

  na

• intel•atom_z2560

  na

• intel•atom_z2580

  na

• intel•atom_z2760

  na

• intel•atom_z3460

  na

• intel•atom_z3480

  na

• intel•atom_z3530

  na

• intel•atom_z3560

  na

• intel•atom_z3570

  na

• intel•atom_z3580

  na

• intel•atom_z3590

  na

• intel•atom_z3735d

  na

• intel•atom_z3735e

  na

• intel•atom_z3735f

  na

• intel•atom_z3735g

  na

• intel•atom_z3736f

  na

• intel•atom_z3736g

  na

• intel•atom_z3740

  na

• intel•atom_z3740d

  na

• intel•atom_z3745

  na

• intel•atom_z3745d

  na

• intel•atom_z3770

  na

• intel•atom_z3770d

  na

Showing first 50 affected entries in server-rendered view.

References (19)

• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00314.html
• https://usn.ubuntu.com/4253-1/
• https://usn.ubuntu.com/4254-1/
• https://usn.ubuntu.com/4255-1/
• https://usn.ubuntu.com/4255-2/
• https://usn.ubuntu.com/4253-2/
• https://usn.ubuntu.com/4254-2/
• http://packetstormsecurity.com/files/156185/Kernel-Live-Patch-Security-Notice-LSN-0062-1.html
• http://packetstormsecurity.com/files/156455/Kernel-Live-Patch-Security-Notice-LSN-0063-1.html
• https://usn.ubuntu.com/4285-1/
• https://usn.ubuntu.com/4287-1/
• https://usn.ubuntu.com/4286-2/
• https://usn.ubuntu.com/4287-2/
• https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html
• https://usn.ubuntu.com/4284-1/
• https://usn.ubuntu.com/4286-1/
• http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00021.html
• https://support.apple.com/kb/HT211100
• http://seclists.org/fulldisclosure/2020/Mar/31