1656986 – (CVE-2018-19854) CVE-2018-19854 kernel: Information Disclosure in crypto_report_one in crypto/crypto_user.c

Bug 1656986 (CVE-2018-19854) - CVE-2018-19854 kernel: Information Disclosure in crypto_report_one in crypto/crypto_user.c

Summary: CVE-2018-19854 kernel: Information Disclosure in crypto_report_one in crypto/...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2018-19854
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1657879 1657880 1657881 1657882
Blocks:	1656989
TreeView+	depends on / blocked

Reported:	2018-12-06 19:34 UTC by Laura Pardo
Modified:	2023-05-12 21:14 UTC (History)
CC List:	44 users (show)
Fixed In Version:	kernel 4.19.3
Doc Type:	If docs needed, set a value
Doc Text:	An issue was discovered in the Linux kernel in the crypto_report_one() and related functions in the crypto/crypto_user.c (the crypto user configuration API) which do not fully initialize structures that are copied to userspace, potentially leaking sensitive kernel memory content to a userspace.
Clone Of:
Environment:
Last Closed:	2019-11-06 00:51:28 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2019:3309	0	None	None	None	2019-11-05 20:34:52 UTC
Red Hat Product Errata	RHSA-2019:3517	0	None	None	None	2019-11-05 21:05:31 UTC

Description Laura Pardo 2018-12-06 19:34:18 UTC

An issue was discovered in the Linux kernel in the crypto_report_one() and related functions in the crypto/crypto_user.c (the crypto user configuration API) which do not fully initialize structures that are copied to userspace, potentially leaking sensitive kernel memory content to a userspace.

References:

https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.3

An upstream patch:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f43f39958beb206b53292801e216d9b8a660f087

Comment 3 Vladis Dronov 2018-12-10 16:24:03 UTC

Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1657882]

Comment 5 errata-xmlrpc 2019-11-05 20:34:50 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2019:3309 https://access.redhat.com/errata/RHSA-2019:3309

Comment 6 errata-xmlrpc 2019-11-05 21:05:29 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2019:3517 https://access.redhat.com/errata/RHSA-2019:3517

Comment 7 Product Security DevOps Team 2019-11-06 00:51:28 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2018-19854

Note You need to log in before you can comment on or make changes to this bug.

acaringi
airlied
bhu
blc
brdeoliv
bskeggs
dhoward
dvlasenk
ewk
fhrbata
hdegoede
hkrzesin
hwkernel-mgr
iboverma
ichavero
itamar
jarodwilson
jforbes
jglisse
jkacur
john.j5live
jonathan
josef
jross
jstancek
jwboyer
kernel-maint
kernel-mgr
labbott
lgoncalv
linville
matt
mchehab
mcressma
mjg59
mlangsdo
nmurray
plougher
rt-maint
rvrbovsk
slawomir
steved
vdronov
williams