CVE-2019-15902

Description

A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.6CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
• v2.0•MEDIUM•Score: 4.7AV:L/AC:M/Au:N/C:C/I:N/A:N

EPSS Trends

Current EPSS score: 0.09%• Percentile: 25%

Techniques & Countermeasures

• CWE-200•Exposure of Sensitive Information to an Unauthorized Actor

  The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Affected Systems

• debian•debian_linux

  8.0 | 9.0 | 10.0

• linux•linux_kernel

  ≥ 4.4, ≤ 4.4.190 | ≥ 4.9, ≤ 4.9.190 | ≥ 4.14, ≤ 4.14.141 | ≥ 4.19, ≤ 4.19.69 | ≥ 5.2, ≤ 5.2.11

• netapp•active_iq_performance_analytics_services

  na

• netapp•baseboard_management_controller_firmware

  na

• netapp•service_processor

  na

• opensuse•leap

  15.0 | 15.1

References (13)

• https://grsecurity.net/teardown_of_a_failed_linux_lts_spectre_fix.php
• http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html
• http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html
• https://seclists.org/bugtraq/2019/Sep/41
• https://www.debian.org/security/2019/dsa-4531
• https://lists.debian.org/debian-lts-announce/2019/10/msg00000.html
• https://security.netapp.com/advisory/ntap-20191004-0001/
• https://usn.ubuntu.com/4157-1/
• https://usn.ubuntu.com/4162-1/
• https://usn.ubuntu.com/4157-2/
• https://usn.ubuntu.com/4163-1/
• https://usn.ubuntu.com/4163-2/
• https://usn.ubuntu.com/4162-2/