Unrated severityNVD Advisory· Published Jan 31, 2020· Updated Sep 30, 2024

CVE-2019-3016

Description

In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.

Affected products

osv-coords60 versions
pkg:apk/chainguard/hyperv-daemons pkg:apk/chainguard/hyperv-daemons-6.18 pkg:apk/chainguard/hyperv-daemons-generic pkg:apk/chainguard/linux pkg:apk/chainguard/linux-aws-6.12 pkg:apk/chainguard/linux-aws-6.12-boot-installed pkg:apk/chainguard/linux-aws-6.12-fips-boot-installed pkg:apk/chainguard/linux-aws-6.12-headers pkg:apk/chainguard/linux-aws-6.12-modules pkg:apk/chainguard/linux-aws-6.18 pkg:apk/chainguard/linux-aws-6.18-boot-installed pkg:apk/chainguard/linux-aws-6.18-fips-boot-installed pkg:apk/chainguard/linux-aws-6.18-headers pkg:apk/chainguard/linux-aws-6.18-modules pkg:apk/chainguard/linux-aws-generic pkg:apk/chainguard/linux-aws-generic-boot-configuration pkg:apk/chainguard/linux-aws-generic-boot-installed pkg:apk/chainguard/linux-aws-generic-fips-boot-installed pkg:apk/chainguard/linux-aws-generic-headers pkg:apk/chainguard/linux-aws-generic-modules pkg:apk/chainguard/linux-azure-6.12 pkg:apk/chainguard/linux-azure-6.18 pkg:apk/chainguard/linux-azure-6.18-boot-installed pkg:apk/chainguard/linux-azure-6.18-fips-boot-installed pkg:apk/chainguard/linux-azure-6.18-headers pkg:apk/chainguard/linux-azure-6.18-modules pkg:apk/chainguard/linux-azure-generic pkg:apk/chainguard/linux-azure-generic-boot-configuration pkg:apk/chainguard/linux-azure-generic-boot-installed pkg:apk/chainguard/linux-azure-generic-fips-boot-installed pkg:apk/chainguard/linux-azure-generic-headers pkg:apk/chainguard/linux-azure-generic-modules pkg:apk/chainguard/linux-boot-configuration pkg:apk/chainguard/linux-boot-installed pkg:apk/chainguard/linux-gcp-6.12 pkg:apk/chainguard/linux-gcp-6.18 pkg:apk/chainguard/linux-gcp-6.18-boot-installed pkg:apk/chainguard/linux-gcp-6.18-fips-boot-installed pkg:apk/chainguard/linux-gcp-6.18-headers pkg:apk/chainguard/linux-gcp-6.18-modules pkg:apk/chainguard/linux-gcp-generic pkg:apk/chainguard/linux-gcp-generic-boot-installed pkg:apk/chainguard/linux-gcp-generic-fips-boot-installed pkg:apk/chainguard/linux-gcp-generic-headers pkg:apk/chainguard/linux-gcp-generic-modules pkg:apk/chainguard/linux-modules pkg:apk/chainguard/linux-qemu-6.12 pkg:apk/chainguard/linux-qemu-6.18 pkg:apk/chainguard/linux-qemu-generic pkg:apk/chainguard/linux-qemu-generic-bootc-boot-installed pkg:apk/chainguard/linux-qemu-melange pkg:apk/chainguard/linux-qemu-rc pkg:apk/chainguard/linux-qemu-rc-boot-installed pkg:apk/chainguard/linux-qemu-rc-fips-boot-installed pkg:apk/chainguard/linux-qemu-rc-headers pkg:apk/chainguard/linux-qemu-rc-modules pkg:apk/chainguard/linux-vmware-6.12 pkg:apk/chainguard/linux-vmware-6.18 pkg:apk/chainguard/linux-vmware-generic pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Tumbleweed
< 0+ 59 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 6.18.5-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 5.14.6-1.4
Linux/Kernelv5
Range: 4.10 to 5.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

usn.ubuntu.com/4300-1/mitrevendor-advisoryx_refsource_UBUNTU
usn.ubuntu.com/4301-1/mitrevendor-advisoryx_refsource_UBUNTU
www.debian.org/security/2020/dsa-4699mitrevendor-advisoryx_refsource_DEBIAN
packetstormsecurity.com/files/157233/Kernel-Live-Patch-Security-Notice-LSN-0065-1.htmlmitrex_refsource_MISC
www.openwall.com/lists/oss-security/2020/01/30/4mitremailing-listx_refsource_MLIST
bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
lore.kernel.org/lkml/1580407316-11391-1-git-send-email-pbonzini%40redhat.com/mitrex_refsource_CONFIRM
security.netapp.com/advisory/ntap-20200313-0003/mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000