vulnerability

Ubuntu: (Multiple Advisories) (CVE-2019-2214): Linux kernel vulnerabilities

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Nov 13, 2019
Added
Jan 8, 2020
Modified
Nov 11, 2024

Description

In binder_transaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-136210786References: Upstream kernel

Solution(s)

ubuntu-upgrade-linux-image-5-0-0-1009-oracleubuntu-upgrade-linux-image-5-0-0-1023-awsubuntu-upgrade-linux-image-5-0-0-1024-kvmubuntu-upgrade-linux-image-5-0-0-1024-raspi2ubuntu-upgrade-linux-image-5-0-0-1027-gkeubuntu-upgrade-linux-image-5-0-0-1028-azureubuntu-upgrade-linux-image-5-0-0-1028-gcpubuntu-upgrade-linux-image-5-0-0-1033-oem-osp1ubuntu-upgrade-linux-image-5-0-0-38-genericubuntu-upgrade-linux-image-5-0-0-38-generic-lpaeubuntu-upgrade-linux-image-5-0-0-38-lowlatencyubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-edgeubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-gke-5-0ubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-oem-osp1ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-oracle-edgeubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-virtual

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today