[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2019-0333":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":38,"duplicates":39,"related":40,"reserved_at":9,"published_at":53,"modified_at":54,"state":9,"summary":55,"references_raw":57,"kevs":126,"epss":9,"epss_history":127,"metrics":128,"affected":129},"MGASA-2019-0333","Updated kernel-linus packages fix security vulnerabilities\n\nThis kernel-linus update is based on the upstream 5.3.11 and fixes at least\nthe following security issues:\n\nInsufficient access control in a subsystem for Intel (R) processor graphics\nmay allow an authenticated user to potentially enable escalation of\nprivilege via local access (CVE-2019-0155).\n\nA Spectre SWAPGS gadget was found in the Linux kernel's implementation of\nsystem interrupts. An attacker with local access could use this information\nto reveal private data through a Spectre like side channel (CVE-2019-1125).\n\nA flaw was found in the Linux kernel’s Bluetooth implementation of UART.\nAn attacker with local access and write permissions to the Bluetooth\nhardware could use this flaw to issue a specially crafted ioctl function\ncall and cause the system to crash (CVE-2019-10207).\n\nTSX Asynchronous Abort condition on some CPUs utilizing speculative\nexecution may allow an authenticated user to potentially enable\ninformation disclosure via a side channel with local access\n(CVE-2019-11135).\n\nImproper invalidation for page table updates by a virtual guest operating\nsystem for multiple Intel(R) Processors may allow an authenticated user to\npotentially enable denial of service of the host system via local access\n(CVE-2018-12207). \n\nFor proper mitigations and fixes for theese issues, a microcode update is\nalso needed, either with a bios/uefi update from your hardware vendor or\nby installing the microcode-0.20191112-1.mga7.nonfree update (mga#25688).\n\nThere is heap-based buffer overflow in the marvell wifi chip driver that\nallows local users to cause a denial of service(system crash) or possibly\nexecute arbitrary code (CVE-2019-14814, CVE-2019-14815, CVE-2019-14816).\n\nAn out-of-bounds access issue was found in the way Linux kernel's KVM\nhypervisor implements the Coalesced MMIO write operation. It operates on\nan MMIO ring buffer 'struct kvm_coalesced_mmio' object, wherein write\nindices 'ring->first' and 'ring->last' value could be supplied by a host\nuser-space process. An unprivileged host user or process with access to\n'/dev/kvm' device could use this flaw to crash the host kernel, resulting\nin a denial of service or potentially escalating privileges on the system\n(CVE-2019-14821).\n\nA buffer overflow flaw was found in the way Linux kernel's vhost\nfunctionality that translates virtqueue buffers to IOVs, logged the buffer\ndescriptors during migration. A privileged guest user able to pass\ndescriptors with invalid length to the host when migration is underway,\ncould use this flaw to increase their privileges on the host\n(CVE-2019-14835).\n\nIn the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c\nallows attackers to obtain sensitive information from kernel stack memory\nbecause tos and flags fields are not initialized (CVE-2019-16714)\n\nrtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux\nkernel through 5.3.6 lacks a certain upper-bound check, leading to a\nbuffer overflow (CVE-2019-17666)\n\nFor other upstream fixes in this update, see the referenced changelogs.\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36],{"_key":15},"CVE-2019-0155",{"_key":17},"CVE-2019-1125",{"_key":19},"CVE-2019-10207",{"_key":21},"CVE-2019-11135",{"_key":23},"CVE-2018-12207",{"_key":25},"CVE-2019-14814",{"_key":27},"CVE-2019-14815",{"_key":29},"CVE-2019-14816",{"_key":31},"CVE-2019-14821",{"_key":33},"CVE-2019-14835",{"_key":35},"CVE-2019-16714",{"_key":37},"CVE-2019-17666",[],[],[41,42,43,44,45,46,47,48,49,50,51,52],{"_key":23},{"_key":15},{"_key":19},{"_key":21},{"_key":17},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},"2019-11-19T21:16:53Z","2026-04-16T04:26:13.203562Z",{"cisa_kev":56,"cisa_ransomware":56,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[58,64,69,73,78,82,86,90,94,98,102,106,110,114,118,122],{"url":59,"sources":60,"tags":62},"https://advisories.mageia.org/MGASA-2019-0333.html",[61],"osv_mageia",[63],"Advisory",{"url":65,"sources":66,"tags":67},"https://bugs.mageia.org/show_bug.cgi?id=25687",[61],[68],"REPORT",{"url":70,"sources":71,"tags":72},"https://bugs.mageia.org/show_bug.cgi?id=25688",[61],[68],{"url":74,"sources":75,"tags":76},"https://kernelnewbies.org/Linux_5.2",[61],[68,77],"WEB",{"url":79,"sources":80,"tags":81},"https://kernelnewbies.org/Linux_5.3",[61],[68,77],{"url":83,"sources":84,"tags":85},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.1",[61],[68,77],{"url":87,"sources":88,"tags":89},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.2",[61],[68,77],{"url":91,"sources":92,"tags":93},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.3",[61],[68,77],{"url":95,"sources":96,"tags":97},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.4",[61],[68,77],{"url":99,"sources":100,"tags":101},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.5",[61],[68,77],{"url":103,"sources":104,"tags":105},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.6",[61],[68,77],{"url":107,"sources":108,"tags":109},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.7",[61],[68,77],{"url":111,"sources":112,"tags":113},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.8",[61],[68,77],{"url":115,"sources":116,"tags":117},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.9",[61],[68,77],{"url":119,"sources":120,"tags":121},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.10",[61],[68,77],{"url":123,"sources":124,"tags":125},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.11",[61],[68,77],[],[],[],[130],{"ecosystem":131,"name":132,"vendor":133,"product":132,"cpe_part":9,"purl_type":134,"purl_namespace":133,"purl_name":132,"source":9,"versions":135},"Mageia","kernel-linus","mageia","rpm",[136],{"version":137,"is_range":138,"range_type":139,"version_start":9,"version_start_type":9,"version_end":140,"version_end_type":141,"fixed_in":9},"lt5_3_11_1_mga7",true,"ecosystem","5.3.11-1.mga7","excluding"]