UBUNTU-CVE-2019-9162

Details

In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 length checks (aka an array index error), making out-of-bounds read and write operations possible, leading to an OOPS or local privilege escalation. This affects snmp_version and snmp_helper.

Affected Packages(25 packages)

linux

Ubuntu 18.04 LTS

Fixed in:

4.13.0-16.19

linux

Ubuntu 14.04 LTS

Fixed in:

3.11.0-12.19

linux

Ubuntu 16.04 LTS

Fixed in:

4.2.0-16.19

linux-aws

Ubuntu 14.04 LTS

Fixed in:

4.4.0-1002.2

linux-aws

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1001.10

linux-aws

Ubuntu 18.04 LTS

Fixed in:

4.15.0-1001.1

linux-aws-hwe

Ubuntu 16.04 LTS

Fixed in:

4.15.0-1030.31~16.04.1

linux-azure

Ubuntu 14.04 LTS

Fixed in:

4.15.0-1023.24~14.04.1

linux-azure

Ubuntu 16.04 LTS

Fixed in:

4.11.0-1009.9

linux-azure

Ubuntu 18.04 LTS

Affected versions:

4.15.0-1002.24.15.0-1003.34.15.0-1004.44.15.0-1008.84.15.0-1009.94.15.0-1012.124.15.0-1013.134.15.0-1014.144.15.0-1018.184.15.0-1019.19+13 more

Fixed in:

4.18.0-1014.14~18.04.1

References

REPORThttp://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c4c07b4d6fa1f11880eab8e076d3d060ef3f55fc REPORThttps://ubuntu.com/security/CVE-2019-9162 REPORThttps://ubuntu.com/security/notices/USN-3930-1 REPORThttps://ubuntu.com/security/notices/USN-3930-2 REPORThttps://www.cve.org/CVERecord?id=CVE-2019-9162

UBUNTU-CVE-2019-9162

Details

Affected Packages(25 packages)

References

CVSS Analysis

Related

Ecosystems

Timeline