Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2019-12817

Published: 24 June 2019

arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's virtual memory under certain conditions via an mmap above 512 TB. Only a subset of powerpc systems are affected.

From the Ubuntu Security Team

It was discovered that the Linux kernel did not properly separate certain memory mappings when creating new userspace processes on 64-bit Power (ppc64el) systems. A local attacker could use this to access memory contents or cause memory corruption of other processes on the system.

Notes

AuthorNote
tyhicks
The vulnerability was introduced in upstream kernel version v4.17
This issue only affects ppc64el. The 32-bit powerpc architecture is
not affected.
Power8, Power7, Power6, Power5, and older 64-bit Power systems are
affected by default
Power9 LPARs running under PowerVM are affected by default. This
issue does not affect Power9 bare metal systems by default. Power9 bare metal
is only affected when "disable_radix" is specified as a kernel boot option.

Priority

High

Cvss 3 Severity Score

7.0

Score breakdown

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.13.0-16.19)
cosmic
Released (4.18.0-24.25)
disco
Released (5.0.0-19.20)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.2.0-16.19)
Patches:
Introduced by

f384796c40dc55b3dba25e0ee9c1afd98c6d24d1

Fixed by ca72d88378b2f2444d3ec145dd442d449d3fefbc
linux-lts-trusty
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-goldfish
Launchpad, Ubuntu, Debian
upstream
Released (5.2~rc7)
xenial Ignored
(end of life)
bionic Does not exist

cosmic Does not exist

disco Does not exist

linux-aws
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.15.0-1001.1)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.4.0-1001.10)
cosmic Not vulnerable
(not built for ppc64el architecture)
disco Not vulnerable
(not built for ppc64el architecture)
linux-flo
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Ignored
(abandoned)
linux-grouper
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-aws-hwe
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.15.0-1030.31~16.04.1)
linux-azure
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(not built for ppc64el architecture)
cosmic Not vulnerable
(not built for ppc64el architecture)
disco Not vulnerable
(not built for ppc64el architecture)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.11.0-1009.9)
linux-azure-edge
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(not built for ppc64el architecture)
cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Not vulnerable
(not built for ppc64el architecture)
linux-euclid
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Not vulnerable

linux-gcp
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.15.0-1001.1)
cosmic Not vulnerable
(not built for ppc64el architecture)
disco Not vulnerable
(not built for ppc64el architecture)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.10.0-1004.4)
linux-gcp-edge
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(not built for ppc64el architecture)
cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-gke
Launchpad, Ubuntu, Debian
bionic Not vulnerable

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Ignored
(end of standard support)
linux-hwe
Launchpad, Ubuntu, Debian
bionic
Released (4.18.0-24.25~18.04.1)
cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.8.0-36.36~16.04.1)
linux-hwe-edge
Launchpad, Ubuntu, Debian
bionic
Released (4.18.0-24.25~18.04.1)
cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.8.0-36.36~16.04.1)
linux-kvm
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.15.0-1002.2)
cosmic Not vulnerable
(not built for ppc64el architecture)
disco Not vulnerable
(not built for ppc64el architecture)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.4.0-1004.9)
linux-lts-utopic
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-lts-vivid
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-lts-wily
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-maguro
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-mako
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Ignored
(abandoned)
linux-manta
Launchpad, Ubuntu, Debian
bionic Does not exist

cosmic Does not exist

disco Does not exist

upstream
Released (5.2~rc7)
xenial Does not exist

linux-oem
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.15.0-1002.3)
cosmic Not vulnerable
(not built for ppc64el architecture)
disco Not vulnerable
(not built for ppc64el architecture)
upstream
Released (5.2~rc7)
xenial Not vulnerable

linux-oracle
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.15.0-1007.9)
cosmic Not vulnerable
(4.15.0-1007.9)
disco Not vulnerable
(4.15.0-1007.9)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.15.0-1007.9~16.04.1)
linux-raspi2
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.13.0-1005.5)
cosmic Not vulnerable
(not built for ppc64el architecture)
disco Not vulnerable
(not built for ppc64el architecture)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.2.0-1013.19)
linux-snapdragon
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(4.4.0-1077.82)
cosmic Does not exist

disco Not vulnerable
(not built for ppc64el architecture)
upstream
Released (5.2~rc7)
xenial Not vulnerable
(4.4.0-1012.12)

Severity score breakdown

Parameter Value
Base score 7.0
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Scope Unchanged
Confidentiality High
Integrity impact High
Availability impact High
Vector CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H