SB2019072617 - Integer overflow in Linux kernel

Description

This security bulletin contains information about 1 security vulnerability.

1) Integer overflow (CVE-ID: CVE-2019-14283)

The vulnerability allows a local attacker to execute arbitrary code or cause a denial of service (DoS) condition on a targeted system.

The vulnerability exists due to the "set_geometry" function in the "drivers/block/floppy.c" file does not properly validate the sect and head fields. A local authenticated attacker can insert a floppy disk that submits malicious input to the targeted system, trigger integer overflow, which could cause an out-of-bounds write condition and execute arbitrary code on the target system or cause a DoS condition.

Remediation

Install update from vendor's website.

References

• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.2.3
• https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=da99466ac243f15fbba65bd261bfc75ffa1532b6
• https://github.com/torvalds/linux/commit/da99466ac243f15fbba65bd261bfc75ffa1532b6