UBUNTU-CVE-2019-20908

Description

An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4. Incorrect access permissions for the efivar_ssdt ACPI variable could be used by attackers to bypass lockdown or secure boot restrictions, aka CID-1957a85b0032.

CVSS Metrics

• v3.1•MEDIUM•Score: 6.7CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• ubuntu•linux

  < 4.15.0-112.113

• ubuntu•linux-aws

  < 4.15.0-1079.83

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.3

  < 5.3.0-1032.34~18.04.2

• ubuntu•linux-aws-fips

  < 4.15.0-2024.24 | all

• ubuntu•linux-aws-hwe

  < 4.15.0-1079.83~16.04.1

• ubuntu•linux-azure

  < 4.15.0-1092.102~14.04.1 | < 4.15.0-1092.102~16.04.1 | all

• ubuntu•linux-azure-4.15

  < 4.15.0-1092.102

• ubuntu•linux-azure-5.3

  < 5.3.0-1034.35~18.04.1

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fde

  all

• ubuntu•linux-azure-fips

  < 4.15.0-2006.7 | all

• ubuntu•linux-bluefield

  all

• ubuntu•linux-fips

  < 4.15.0-1037.42

• ubuntu•linux-gcp

  < 4.15.0-1080.90~16.04.1 | all

• ubuntu•linux-gcp-4.15

  < 4.15.0-1080.90

• ubuntu•linux-gcp-5.3

  < 5.3.0-1032.34~18.04.1

• ubuntu•linux-gcp-edge

  all

• ubuntu•linux-gcp-fips

  all

• ubuntu•linux-gke

  all

• ubuntu•linux-gke-4.15

  < 4.15.0-1066.69

• ubuntu•linux-gke-5.0

  < 5.0.0-1045.46

• ubuntu•linux-gke-5.3

  < 5.3.0-1032.34~18.04.1

• ubuntu•linux-hwe

  < 4.15.0-112.113~16.04.1 | < 5.3.0-64.58~18.04.1

• ubuntu•linux-hwe-edge

  all | all

• ubuntu•linux-intel-iot-realtime

  all

• ubuntu•linux-kvm

  < 4.15.0-1071.72

• ubuntu•linux-nvidia

  all

• ubuntu•linux-oem

  < 4.15.0-1093.103

• ubuntu•linux-oem-osp1

  < 5.0.0-1065.70

• ubuntu•linux-oracle

  < 4.15.0-1050.54~16.04.1 | < 4.15.0-1050.54

• ubuntu•linux-oracle-5.0

  all

• ubuntu•linux-oracle-5.3

  < 5.3.0-1030.32~18.04.1

• ubuntu•linux-raspi-realtime

  all

• ubuntu•linux-raspi2

  < 4.15.0-1067.71 | all

• ubuntu•linux-raspi2-5.3

  < 5.3.0-1030.32~18.04.2

• ubuntu•linux-realtime

  all

• ubuntu•linux-riscv

  all

• ubuntu•linux-snapdragon

  < 4.15.0-1083.91

References (11)

• https://ubuntu.com/security/CVE-2019-20908
• https://www.openwall.com/lists/oss-security/2020/06/14/1
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1957a85b0032a81e6482ca4aab883643b8dae06e
• https://git.zx2c4.com/american-unsigned-language/tree/american-unsigned-language.sh
• https://mailarchives.bentasker.co.uk/Mirrors/OSSSec/2020/06-Jun/msg00035.html
• https://ubuntu.com/security/notices/USN-4426-1
• https://ubuntu.com/security/notices/USN-4427-1
• https://ubuntu.com/security/notices/USN-4439-1
• https://ubuntu.com/security/notices/USN-4440-1
• https://www.cve.org/CVERecord?id=CVE-2019-20908