Bug 1724393 (CVE-2019-0154) - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower power state
Summary: CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower p...
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2019-0154
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1756805 1756808 1756816 1756823 1756803 1756810 1756811 1756812 1756813 1756814 1756815 1756819 1756821 1756822 1756824 1756825 1756826 1756827 1756828 1759410 1759411 1759412 1766056 1766058 1766059 1768925 1771642
Blocks: 1724392
TreeView+ depends on / blocked
 
Reported: 2019-06-27 01:17 UTC by Wade Mealing
Modified: 2020-01-23 09:25 UTC (History)
56 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in Intel graphics hardware (GPU) where a local attacker with the ability to issue an ioctl could trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state. This creates a denial of service situation and the GPU and connected displays will remain unusable until a reboot occurs.
Clone Of:
Environment:
Last Closed: 2019-11-13 00:51:19 UTC


Attachments (Terms of Use)


Links
System ID Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2019:3866 None None None 2019-11-13 15:53:27 UTC
Red Hat Product Errata RHBA-2019:3886 None None None 2019-11-14 15:29:58 UTC
Red Hat Product Errata RHBA-2019:4120 None None None 2019-12-09 21:41:31 UTC
Red Hat Product Errata RHSA-2019:3832 None None None 2019-11-12 19:53:57 UTC
Red Hat Product Errata RHSA-2019:3833 None None None 2019-11-12 19:08:54 UTC
Red Hat Product Errata RHSA-2019:3834 None None None 2019-11-12 20:46:57 UTC
Red Hat Product Errata RHSA-2019:3835 None None None 2019-11-12 19:25:30 UTC
Red Hat Product Errata RHSA-2019:3836 None None None 2019-11-12 20:57:15 UTC
Red Hat Product Errata RHSA-2019:3837 None None None 2019-11-12 20:44:47 UTC
Red Hat Product Errata RHSA-2019:3838 None None None 2019-11-12 20:45:47 UTC
Red Hat Product Errata RHSA-2019:3839 None None None 2019-11-12 21:33:37 UTC
Red Hat Product Errata RHSA-2019:3840 None None None 2019-11-12 21:19:05 UTC
Red Hat Product Errata RHSA-2019:3841 None None None 2019-11-12 20:58:54 UTC
Red Hat Product Errata RHSA-2019:3844 None None None 2019-11-12 21:07:41 UTC
Red Hat Product Errata RHSA-2020:0204 None None None 2020-01-22 21:24:54 UTC

Description Wade Mealing 2019-06-27 01:17:22 UTC
A flaw was found in Intel graphics hardware (GPU) where a local attacker with the ability to issue an ioctl could trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state.

This creates a denial of service situation and the GPU and connected displays will remain unusable until a reboot occurs.

Intel plans to release BIOS firmware, along with updates supplied by Red Hat should mitigate this vulnerability.

Some older hardware will not have  BIOS firmware update and will rely on operating system level protection to prevent access while the device is in low-power states.

Comment 16 Wade Mealing 2019-10-29 00:54:48 UTC
Mitigation:

Preventing loading of the i915 kernel module will prevent attackers from using this exploit against the system however the power management functionality of the card will be disabled and the system may draw additional power. See this KCS article (https://access.redhat.com/solutions/41278) for instructions on how to disable a kernel module. Graphical displays may also be at low resolution or not work correctly.  This mitigation may not be suitable if running graphical tools locally is required.

Comment 17 Wade Mealing 2019-11-04 04:21:02 UTC
Acknowledgments:

Name: Intel

Comment 19 Wade Mealing 2019-11-12 09:55:45 UTC
Statement:

Intel plans to release BIOS firmware to correct this issue. Red Hat's kernel update should mitigate this vulnerability. Some older hardware will not have BIOS firmware update and will rely on operating system level protection to prevent access while the device is in low-power states. For more information see https://access.redhat.com/solutions/i915-graphics

Comment 21 Petr Matousek 2019-11-12 18:06:07 UTC
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1771642]

Comment 23 errata-xmlrpc 2019-11-12 19:08:51 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2019:3833 https://access.redhat.com/errata/RHSA-2019:3833

Comment 24 errata-xmlrpc 2019-11-12 19:25:27 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2019:3835 https://access.redhat.com/errata/RHSA-2019:3835

Comment 25 errata-xmlrpc 2019-11-12 19:53:54 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2019:3832 https://access.redhat.com/errata/RHSA-2019:3832

Comment 26 errata-xmlrpc 2019-11-12 20:44:44 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.6 Extended Update Support

Via RHSA-2019:3837 https://access.redhat.com/errata/RHSA-2019:3837

Comment 27 errata-xmlrpc 2019-11-12 20:45:44 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.5 Extended Update Support

Via RHSA-2019:3838 https://access.redhat.com/errata/RHSA-2019:3838

Comment 28 errata-xmlrpc 2019-11-12 20:46:54 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2019:3834 https://access.redhat.com/errata/RHSA-2019:3834

Comment 29 errata-xmlrpc 2019-11-12 20:57:13 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2019:3836 https://access.redhat.com/errata/RHSA-2019:3836

Comment 30 errata-xmlrpc 2019-11-12 20:58:51 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.2 Telco Extended Update Support
  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions

Via RHSA-2019:3841 https://access.redhat.com/errata/RHSA-2019:3841

Comment 31 errata-xmlrpc 2019-11-12 21:07:38 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise MRG 2

Via RHSA-2019:3844 https://access.redhat.com/errata/RHSA-2019:3844

Comment 32 errata-xmlrpc 2019-11-12 21:19:02 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Telco Extended Update Support
  Red Hat Enterprise Linux 7.3 Advanced Update Support
  Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions

Via RHSA-2019:3840 https://access.redhat.com/errata/RHSA-2019:3840

Comment 33 errata-xmlrpc 2019-11-12 21:33:34 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.4 Advanced Update Support
  Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.4 Telco Extended Update Support

Via RHSA-2019:3839 https://access.redhat.com/errata/RHSA-2019:3839

Comment 34 Product Security DevOps Team 2019-11-13 00:51:19 UTC
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2019-0154

Comment 48 errata-xmlrpc 2020-01-22 21:24:51 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions

Via RHSA-2020:0204 https://access.redhat.com/errata/RHSA-2020:0204


Note You need to log in before you can comment on or make changes to this bug.