CVE-2019-11486

The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel before 5.0.8 has multiple race conditions.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux	19.04 disco	Fixed 5.0.0-16.17
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 4.15.0-60.67
	16.04 LTS xenial	Fixed 4.4.0-150.176
	14.04 LTS trusty	Ignored
linux-aws	19.04 disco	Fixed 5.0.0-1007.7
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 4.15.0-1047.49
	16.04 LTS xenial	Fixed 4.4.0-1084.94
	14.04 LTS trusty	Ignored
linux-aws-hwe	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Fixed 4.15.0-1047.49~16.04.1
	14.04 LTS trusty	Not in release
linux-azure	19.04 disco	Fixed 5.0.0-1008.8
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 5.0.0-1014.14~18.04.1
	16.04 LTS xenial	Fixed 4.15.0-1056.61
	14.04 LTS trusty	Fixed 4.15.0-1056.61~14.04.1 Ubuntu Pro
linux-azure-edge	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Fixed 5.0.0-1014.14~18.04.1
	16.04 LTS xenial	Fixed 4.15.0-1056.61
	14.04 LTS trusty	Not in release
linux-euclid	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Ignored
	14.04 LTS trusty	Not in release
linux-flo	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Ignored
	14.04 LTS trusty	Not in release
linux-gcp	19.04 disco	Fixed 5.0.0-1007.7
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 4.15.0-1042.45
	16.04 LTS xenial	Fixed 4.15.0-1041.43
	14.04 LTS trusty	Not in release
linux-gcp-edge	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not affected
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-gke	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Ignored
	14.04 LTS trusty	Not in release
linux-gke-4.15	19.04 disco	Not in release
	18.04 LTS bionic	Fixed 4.15.0-1041.43
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-gke-5.0	19.04 disco	Not in release
	18.04 LTS bionic	Not affected
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-goldfish	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Ignored
	14.04 LTS trusty	Not in release
linux-grouper	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-hwe	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Fixed 5.0.0-23.24~18.04.1
	16.04 LTS xenial	Fixed 4.15.0-60.67~16.04.1
	14.04 LTS trusty	Not in release
linux-hwe-edge	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Fixed 5.0.0-16.17~18.04.1
	16.04 LTS xenial	Fixed 4.15.0-60.67~16.04.1
	14.04 LTS trusty	Not in release
linux-kvm	19.04 disco	Fixed 5.0.0-1007.7
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 4.15.0-1043.43
	16.04 LTS xenial	Fixed 4.4.0-1047.53
	14.04 LTS trusty	Not in release
linux-lts-trusty	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-utopic	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Ignored
linux-lts-vivid	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Ignored
linux-lts-wily	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Ignored
linux-lts-xenial	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Ignored
linux-maguro	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-mako	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Ignored
	14.04 LTS trusty	Not in release
linux-manta	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-oem	19.04 disco	Fixed 4.15.0-1056.65
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 4.15.0-1056.65
	16.04 LTS xenial	Ignored
	14.04 LTS trusty	Not in release
linux-oracle	19.04 disco	Fixed 5.0.0-1003.4
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 4.15.0-1022.25
	16.04 LTS xenial	Fixed 4.15.0-1022.25~16.04.1
	14.04 LTS trusty	Not in release
linux-raspi2	19.04 disco	Fixed 5.0.0-1009.9
	18.10 cosmic	Ignored
	18.04 LTS bionic	Fixed 4.15.0-1044.47
	16.04 LTS xenial	Fixed 4.4.0-1110.118
	14.04 LTS trusty	Not in release
linux-snapdragon	19.04 disco	Fixed 5.0.0-1013.13
	18.10 cosmic	Not in release
	18.04 LTS bionic	Fixed 4.15.0-1062.69
	16.04 LTS xenial	Fixed 4.4.0-1114.119
	14.04 LTS trusty	Not in release

Get expanded security coverage with Ubuntu Pro

Reduce your average CVE exposure time from 98 days to 1 day with expanded CVE patching, ten-years security maintenance and optional support for the full stack of open-source applications. Free for personal use.

Get Ubuntu Pro

Notes

tyhicks

The driver was marked broken in the upstream tree. As of 2019-04-29, there are no fixes for all the specific issues associated with this driver so we've disabled the driver.

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
linux	Introduced by 1da177e, fixed by c7084ed

Severity score breakdown

Parameter	Value
Base score	7.0 · High
Attack vector	Local
Attack complexity	High
Privileges required	Low
User interaction	None
Scope	Unchanged
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H