SB2019011528 - Multiple vulnerabilities in Oracle Solaris

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2019011528

SB2019011528 - Multiple vulnerabilities in Oracle Solaris

Published: January 15, 2019

Security Bulletin ID SB2019011528
Severity
Low
Patch available
YES
Number of vulnerabilities 7
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 7 secuirty vulnerabilities.


1) Denial of service (CVE-ID: CVE-2019-2545)

The vulnerability allows a local unauthenticated attacker to cause DoS condition.

The weakness exists due to unspecified flaw in the LDoms IO component. A local attacker can cause the service to crash.

2) Information disclosure (CVE-ID: CVE-2019-2544)

The vulnerability allows a local unauthenticated attacker to obtain potentially sensitive information.

The weakness exists due to unspecified flaw in the Kernel component. A local attacker can read arbitrary files.

3) Information disclosure (CVE-ID: CVE-2019-2543)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to unspecified flaw in the Kernel component. A remote attacker can read arbitrary files.

4) Speculative Store Bypass (CVE-ID: CVE-2018-3639)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to race conditions in CPU cache processing. A local attacker can conduct a side-channel attack to exploit a flaw in the speculative execution of Load and Store instructions to read privileged memory.

Note: the vulnerability is referred to as "Spectre variant 4".

5) Information disclosure (CVE-ID: CVE-2018-3646)

The vulnerability allows an adjacent attacker to obtain potentially sensitive information on the target system.

The weakness exists on the systems with microprocessors utilizing speculative execution and address translations due to an error in Hypervisor. An adjacent attacker can access information residing in the L1 data cache via a terminal page fault and a side-channel analysis.


6) Denial of service (CVE-ID: CVE-2019-2437)

The vulnerability allows a remote attacker to cause DoS condition.

The weakness exists due to unspecified flaw in the Kernel component. A remote attacker can cause the service to crash.

7) Privilege escalation (CVE-ID: CVE-2019-2541)

The vulnerability allows an adjacent attacker to gain elevated privileges.

The weakness exists due to unspecified flaw in DHCP Client. An adjacent attacker can gain elevated privileges to conduct further attacks.

Remediation

Install update from vendor's website.

References