CVE-2019-15117

Priority
Description
parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through
5.2.9 mishandles a short descriptor, leading to out-of-bounds memory
access.
Ubuntu-Description
Hui Peng and Mathias Payer discovered that the USB audio driver for the
Linux kernel did not properly validate device meta data. A physically
proximate attacker could use this to cause a denial of service (system
crash).
Notes
tyhicksThe parse_audio_mixer_unit() function has changed its handling of the
input pins and source ID over time but I believe that it is vulnerable all
the way back to the start of git history.
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):ignored (was needs-triage ESM criteria)
Ubuntu 14.04 ESM (Trusty Tahr):ignored (was needs-triage ESM criteria)
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.4.0-166.195)
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-66.75)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-31.33)
Ubuntu 19.10 (Eoan):not-affected (5.3.0-10.11)
Patches:
Introduced by
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed by
daac07156b330b18eb5071aec4b3ddca1c377f2c
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):ignored (was needs-triage ESM criteria)
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.4.0-1096.107)
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-1052.54)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-1018.20)
Ubuntu 19.10 (Eoan):not-affected (5.3.0-1002.2)
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.15.0-1052.54~16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):ignored (was needs-triage ESM criteria)
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.15.0-1061.66)
Ubuntu 18.04 LTS (Bionic Beaver):released (5.0.0-1022.23~18.04.1)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-1022.23)
Ubuntu 19.10 (Eoan):not-affected (5.3.0-1002.2)
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.15.0-1061.66)
Ubuntu 18.04 LTS (Bionic Beaver):pending (5.0.0-1022.23~18.04.1)
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.15.0-1047.50)
Ubuntu 18.04 LTS (Bionic Beaver):released (5.0.0-1020.20~18.04.1)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-1020.20)
Ubuntu 19.10 (Eoan):not-affected (5.3.0-1003.3)
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):released (5.0.0-1020.20~18.04.1)
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-1046.49)
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):released (5.0.0-1020.20~18.04.1)
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.15.0-66.75~16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (5.0.0-31.33~18.04.1)
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.15.0-66.75~16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):pending (5.3.0-12.13~18.04.2)
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.4.0-1060.67)
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-1048.48)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-1019.20)
Ubuntu 19.10 (Eoan):not-affected (5.3.0-1002.2)
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):ignored (was needs-triage ESM criteria)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):ignored (was needs-triage ESM criteria)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):ignored (was needs-triage now end-of-life)
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-1058.67)
Ubuntu 19.04 (Disco Dingo):needed
Ubuntu 19.10 (Eoan):needed
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.15.0-1027.30~16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-1027.30)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-1004.8)
Ubuntu 19.10 (Eoan):pending (5.3.0-1001.1)
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.4.0-1124.133)
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-1049.53)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-1019.19)
Ubuntu 19.10 (Eoan):not-affected (5.3.0-1005.6)
Package
Upstream:released (5.3~rc5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):pending (4.4.0-1128.136)
Ubuntu 18.04 LTS (Bionic Beaver):pending (4.15.0-1066.73)
Ubuntu 19.04 (Disco Dingo):released (5.0.0-1023.24)
Ubuntu 19.10 (Eoan):needed
More Information

Updated: 2019-10-14 17:14:23 UTC (commit 9f8bc9e39b7184de2363a5f5b93c8cc1e6b1a007)