Candidate: CVE-2019-13351
PublicDate: 2019-07-05 20:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13351
 https://github.com/jackaudio/jack2/pull/480
Description:
 posix/JackSocket.cpp in libjack in JACK2 1.9.1 through 1.9.12 (as
 distributed with alsa-plugins 1.1.7 and later) has a "double file
 descriptor close" issue during a failed connection attempt when jackd2 is
 not running. Exploitation success depends on multithreaded timing of that
 double close, which can result in unintended information disclosure,
 crashes, or file corruption due to having the wrong file associated with
 the file descriptor.
Ubuntu-Description:
Notes:
Bugs:
 https://github.com/xbmc/xbmc/issues/16258
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931488
 https://bugs.launchpad.net/ubuntu/+source/jackd2/+bug/1833479
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H [8.1 HIGH]


Patches_jackd2:
 upstream: https://github.com/jackaudio/jack2/commit/994e225bbb07a89f56147f7ce7d59beb49f8cfba
upstream_jackd2: needs-triage
precise/esm_jackd2: DNE
trusty_jackd2: ignored (out of standard support)
trusty/esm_jackd2: DNE
xenial_jackd2: ignored (end of standard support, was needed)
esm-infra/xenial_jackd2: needed
bionic_jackd2: needed
cosmic_jackd2: ignored (reached end-of-life)
disco_jackd2: ignored (reached end-of-life)
eoan_jackd2: ignored (reached end-of-life)
focal_jackd2: released (1.9.12~dfsg-2ubuntu2)
groovy_jackd2: released (1.9.12~dfsg-2ubuntu2)
hirsute_jackd2: released (1.9.12~dfsg-2ubuntu2)
impish_jackd2: released (1.9.12~dfsg-2ubuntu2)
jammy_jackd2: released (1.9.12~dfsg-2ubuntu2)
devel_jackd2: released (1.9.12~dfsg-2ubuntu2)