Linux Kernel up to 5.2.10 Speculative Execution ptrace_get_debugreg Spectre information disclosure

Summaryinfo

A vulnerability, which was classified as critical, was found in Linux Kernel up to 4.4.189/4.9.189/4.14.140/4.19.68/5.2.10. This affects the function ptrace_get_debugreg of the component Speculative Execution. Such manipulation leads to information disclosure (Spectre). This vulnerability is listed as CVE-2019-15902. The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.

Detailsinfo

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 4.4.189/4.9.189/4.14.140/4.19.68/5.2.10 (Operating System). Affected by this issue is the function ptrace_get_debugreg of the component Speculative Execution. The manipulation with an unknown input leads to a information disclosure vulnerability (Spectre). Using CWE to declare the problem leads to CWE-200. The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. Impacted is confidentiality, integrity, and availability. CVE summarizes:

A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.

The weakness was presented 09/04/2019 (Website). The advisory is shared for download at seclists.org. This vulnerability is handled as CVE-2019-15902 since 09/04/2019. The exploitation is known to be difficult. The attack may be launched remotely. No form of authentication is required for exploitation. There are known technical details, but no exploit is available. The MITRE ATT&CK project declares the attack technique as T1592.

Upgrading to version 4.4.190, 4.9.190, 4.14.141 or 5.2.11 eliminates this vulnerability.

See VDB-140264, VDB-140265, VDB-140765 and VDB-140890 for similar entries. VulDB is the best source for vulnerability data and more expert information about this specific topic.

Productinfo

Type

• Operating System

Vendor

• Linux

Name

• Kernel

Version

• 4.4.189
• 4.9.189
• 4.14.140
• 4.19.0
• 4.19.1
• 4.19.2
• 4.19.3
• 4.19.4
• 4.19.5
• 4.19.6
• 4.19.7
• 4.19.8
• 4.19.9
• 4.19.10
• 4.19.11
• 4.19.12
• 4.19.13
• 4.19.14
• 4.19.15
• 4.19.16
• 4.19.17
• 4.19.18
• 4.19.19
• 4.19.20
• 4.19.21
• 4.19.22
• 4.19.23
• 4.19.24
• 4.19.25
• 4.19.26
• 4.19.27
• 4.19.28
• 4.19.29
• 4.19.30
• 4.19.31
• 4.19.32
• 4.19.33
• 4.19.34
• 4.19.35
• 4.19.36
• 4.19.37
• 4.19.38
• 4.19.39
• 4.19.40
• 4.19.41
• 4.19.42
• 4.19.43
• 4.19.44
• 4.19.45
• 4.19.46
• 4.19.47
• 4.19.48
• 4.19.49
• 4.19.50
• 4.19.51
• 4.19.52
• 4.19.53
• 4.19.54
• 4.19.55
• 4.19.56
• 4.19.57
• 4.19.58
• 4.19.59
• 4.19.60
• 4.19.61
• 4.19.62
• 4.19.63
• 4.19.64
• 4.19.65
• 4.19.66
• 4.19.67
• 4.19.68
• 5.2.0
• 5.2.1
• 5.2.2
• 5.2.3
• 5.2.4
• 5.2.5
• 5.2.6
• 5.2.7
• 5.2.8
• 5.2.9
• 5.2.10

License

• open-source

Website

• Vendor: https://www.kernel.org/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Discussion