// For flags

CVE-2019-14284

 

Severity Score

6.2
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setup_format_params division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make F_SECT_PER_TRACK be zero. Next, the floppy format operation should be called. It can be triggered by an unprivileged local user even when a floppy disk has not been inserted. NOTE: QEMU creates the floppy device by default.

En el kernel de Linux anterior a versión 5.2.3, el archivo drivers/block/floppy.c, permite una denegación de servicio mediante la división por cero de la función setup_format_params. Dos ioctls consecutivos pueden desencadenar el error: el primero debe establecer la geometría de la unidad con valores .sect y .rate que hacen que F_SECT_PER_TRACK sea cero. A continuación, se debe llamar a la operación de formato de disquete. Puede ser activado por un usuario local sin privilegios incluso cuando no se ha insertado un disquete. NOTA: QEMU crea el dispositivo de disquete de por defecto.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-07-26 CVE Reserved
  • 2019-07-26 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-369: Divide By Zero
CAPEC
References (21)
URL Tag Source
http://packetstormsecurity.com/files/154059/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html X_refsource_misc
http://packetstormsecurity.com/files/154408/Kernel-Live-Patch-Security-Notice-LSN-0055-1.html X_refsource_misc
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html X_refsource_misc
https://lists.debian.org/debian-lts-announce/2019/08/msg00016.html Mailing List
https://lists.debian.org/debian-lts-announce/2019/08/msg00017.html Mailing List
https://seclists.org/bugtraq/2019/Aug/13 Mailing List
https://seclists.org/bugtraq/2019/Aug/18 Mailing List
https://seclists.org/bugtraq/2019/Aug/26 Mailing List
https://security.netapp.com/advisory/ntap-20190905-0002 X_refsource_confirm
URL Date SRC
URL Date SRC
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f3554aeb991214cbfafd17d55e2bfddb50282e32 2019-08-11
https://github.com/torvalds/linux/commit/f3554aeb991214cbfafd17d55e2bfddb50282e32 2019-08-11
URL Date SRC
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00055.html 2019-08-11
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00056.html 2019-08-11
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.2.3 2019-08-11
https://usn.ubuntu.com/4114-1 2019-08-11
https://usn.ubuntu.com/4115-1 2019-08-11
https://usn.ubuntu.com/4116-1 2019-08-11
https://usn.ubuntu.com/4117-1 2019-08-11
https://usn.ubuntu.com/4118-1 2019-08-11
https://www.debian.org/security/2019/dsa-4495 2019-08-11
https://www.debian.org/security/2019/dsa-4497 2019-08-11
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linux
Search vendor "Linux"
 Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
 < 5.2.3
Search vendor "Linux" for product "Linux Kernel" and version " < 5.2.3"
-
Affected