CVE-2019-11884 — LOW (3.3) — White Hats Nepal

Q: How severe is CVE-2019-11884?

CVE-2019-11884 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-11884?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Fedoraproject Fedora, Debian Debian Linux, Canonical Ubuntu Linux, Redhat Enterprise Linux.

Vulnerability Description

The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.

CVSS Score

3.3

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 5.0.15
Fedoraproject	Fedora	28
Debian	Debian Linux	8.0
Canonical	Ubuntu Linux	16.04
Redhat	Enterprise Linux	8.0
Redhat	Enterprise Linux Eus	8.1
Redhat	Enterprise Linux For Real Time	8.0
Redhat	Enterprise Linux For Real Time For Nfv Tus	8.2
Redhat	Enterprise Linux For Real Time Tus	8.2
Redhat	Enterprise Linux Server Aus	8.2
Redhat	Enterprise Linux Server Tus	8.2
Opensuse	Leap	15.0

References

http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00037.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00043.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.htmlMailing ListThird Party Advisory
http://www.securityfocus.com/bid/108299Broken LinkThird Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2019:3309Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3517Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0740Third Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.15Release NotesVendor Advisory
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a1616PatchVendor Advisory
https://github.com/torvalds/linux/commit/a1616a5ac99ede5d605047a9012481ce7ff18b1PatchVendor Advisory
https://lists.debian.org/debian-lts-announce/2019/06/msg00010.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2019/06/msg00011.htmlMailing ListThird Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro

FAQ

What is CVE-2019-11884?

CVE-2019-11884 is a vulnerability with a CVSS score of 3.3 (LOW). The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNAD...

How severe is CVE-2019-11884?

CVE-2019-11884 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-11884?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Fedoraproject Fedora, Debian Debian Linux, Canonical Ubuntu Linux, Redhat Enterprise Linux.