Bug 1724393 (CVE-2019-0154) - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower power state
Summary: CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower p...
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2019-0154
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1766059 1756803 1756805 1756808 1756810 1756811 1756812 1756813 1756814 1756815 1756816 1756819 1756821 1756822 1756823 1756824 1756825 1756826 1756827 1756828 1759410 1759411 1759412 1766056 1766058 1768925 1771642
Blocks: 1724392
TreeView+ depends on / blocked
 
Reported: 2019-06-27 01:17 UTC by Wade Mealing
Modified: 2023-05-12 21:16 UTC (History)
57 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in Intel graphics hardware (GPU) where a local attacker with the ability to issue an ioctl could trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state. This creates a denial of service situation and the GPU and connected displays will remain unusable until a reboot occurs.
Clone Of:
Environment:
Last Closed: 2019-11-13 00:51:19 UTC
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2019:3866 0 None None None 2019-11-13 15:53:27 UTC
Red Hat Product Errata RHBA-2019:3886 0 None None None 2019-11-14 15:29:58 UTC
Red Hat Product Errata RHBA-2019:4120 0 None None None 2019-12-09 21:41:31 UTC
Red Hat Product Errata RHSA-2019:3832 0 None None None 2019-11-12 19:53:57 UTC
Red Hat Product Errata RHSA-2019:3833 0 None None None 2019-11-12 19:08:54 UTC
Red Hat Product Errata RHSA-2019:3834 0 None None None 2019-11-12 20:46:57 UTC
Red Hat Product Errata RHSA-2019:3835 0 None None None 2019-11-12 19:25:30 UTC
Red Hat Product Errata RHSA-2019:3836 0 None None None 2019-11-12 20:57:15 UTC
Red Hat Product Errata RHSA-2019:3837 0 None None None 2019-11-12 20:44:47 UTC
Red Hat Product Errata RHSA-2019:3838 0 None None None 2019-11-12 20:45:47 UTC
Red Hat Product Errata RHSA-2019:3839 0 None None None 2019-11-12 21:33:37 UTC
Red Hat Product Errata RHSA-2019:3840 0 None None None 2019-11-12 21:19:05 UTC
Red Hat Product Errata RHSA-2019:3841 0 None None None 2019-11-12 20:58:54 UTC
Red Hat Product Errata RHSA-2019:3844 0 None None None 2019-11-12 21:07:41 UTC
Red Hat Product Errata RHSA-2020:0204 0 None None None 2020-01-22 21:24:54 UTC

Description Wade Mealing 2019-06-27 01:17:22 UTC 
A flaw was found in Intel graphics hardware (GPU) where a local attacker with the ability to issue an ioctl could trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state.

This creates a denial of service situation and the GPU and connected displays will remain unusable until a reboot occurs.

Intel plans to release BIOS firmware, along with updates supplied by Red Hat should mitigate this vulnerability.

Some older hardware will not have  BIOS firmware update and will rely on operating system level protection to prevent access while the device is in low-power states.
Comment 16 Wade Mealing 2019-10-29 00:54:48 UTC 
Mitigation:

Preventing loading of the i915 kernel module will prevent attackers from using this exploit against the system however the power management functionality of the card will be disabled and the system may draw additional power. See this KCS article (https://access.redhat.com/solutions/41278) for instructions on how to disable a kernel module. Graphical displays may also be at low resolution or not work correctly.  This mitigation may not be suitable if running graphical tools locally is required.
Comment 17 Wade Mealing 2019-11-04 04:21:02 UTC 
Acknowledgments:

Name: Intel
Comment 19 Wade Mealing 2019-11-12 09:55:45 UTC 
Statement:

Intel plans to release BIOS firmware to correct this issue. Red Hat's kernel update should mitigate this vulnerability. Some older hardware will not have BIOS firmware update and will rely on operating system level protection to prevent access while the device is in low-power states. For more information see https://access.redhat.com/solutions/i915-graphics
Comment 21 Petr Matousek 2019-11-12 18:06:07 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1771642]
Comment 22 Petr Matousek 2019-11-12 18:08:36 UTC 
External References:

https://access.redhat.com/solutions/i915-graphics
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00260.html
Comment 23 errata-xmlrpc 2019-11-12 19:08:51 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2019:3833 https://access.redhat.com/errata/RHSA-2019:3833
Comment 24 errata-xmlrpc 2019-11-12 19:25:27 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2019:3835 https://access.redhat.com/errata/RHSA-2019:3835
Comment 25 errata-xmlrpc 2019-11-12 19:53:54 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2019:3832 https://access.redhat.com/errata/RHSA-2019:3832
Comment 26 errata-xmlrpc 2019-11-12 20:44:44 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.6 Extended Update Support

Via RHSA-2019:3837 https://access.redhat.com/errata/RHSA-2019:3837
Comment 27 errata-xmlrpc 2019-11-12 20:45:44 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.5 Extended Update Support

Via RHSA-2019:3838 https://access.redhat.com/errata/RHSA-2019:3838
Comment 28 errata-xmlrpc 2019-11-12 20:46:54 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2019:3834 https://access.redhat.com/errata/RHSA-2019:3834
Comment 29 errata-xmlrpc 2019-11-12 20:57:13 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2019:3836 https://access.redhat.com/errata/RHSA-2019:3836
Comment 30 errata-xmlrpc 2019-11-12 20:58:51 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.2 Telco Extended Update Support
  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions

Via RHSA-2019:3841 https://access.redhat.com/errata/RHSA-2019:3841
Comment 31 errata-xmlrpc 2019-11-12 21:07:38 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise MRG 2

Via RHSA-2019:3844 https://access.redhat.com/errata/RHSA-2019:3844
Comment 32 errata-xmlrpc 2019-11-12 21:19:02 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Telco Extended Update Support
  Red Hat Enterprise Linux 7.3 Advanced Update Support
  Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions

Via RHSA-2019:3840 https://access.redhat.com/errata/RHSA-2019:3840
Comment 33 errata-xmlrpc 2019-11-12 21:33:34 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.4 Advanced Update Support
  Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.4 Telco Extended Update Support

Via RHSA-2019:3839 https://access.redhat.com/errata/RHSA-2019:3839
Comment 34 Product Security DevOps Team 2019-11-13 00:51:19 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2019-0154
Comment 48 errata-xmlrpc 2020-01-22 21:24:51 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions

Via RHSA-2020:0204 https://access.redhat.com/errata/RHSA-2020:0204
Note You need to log in before you can comment on or make changes to this bug.