Vulnerability-Lookup

RHSA-2019_2695

Vulnerability from csaf_redhat - Published: 2019-09-10 17:57 - Updated: 2024-11-15 03:14

Summary

Red Hat Security Advisory: kernel security and bug fix update

Severity

Moderate

Notes

Topic: An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: hw: Spectre SWAPGS gadget vulnerability (CVE-2019-1125) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * fragmented packets timing out (BZ#1741129) * Backport TCP follow-up for small buffers (BZ#1741142)

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2019-1125

A Spectre gadget was found in the Linux kernel's implementation of system interrupts. An attacker with local access could use this information to reveal private data through a Spectre like side channel.

5.9 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Vendor Fix For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. https://access.redhat.com/errata/RHSA-2019:2695

Workaround For mitigation related information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/articles/4329821

References

URL

Category

	https://access.redhat.com/errata/RHSA-2019:2695	self
	https://access.redhat.com/security/updates/classi…	external
	https://access.redhat.com/articles/4329821	external
	https://bugzilla.redhat.com/show_bug.cgi?id=1724389	external
	https://security.access.redhat.com/data/csaf/v2/a…	self
	https://access.redhat.com/security/cve/CVE-2019-1125	self
	https://bugzilla.redhat.com/show_bug.cgi?id=1724389	external
	https://www.cve.org/CVERecord?id=CVE-2019-1125	external
	https://nvd.nist.gov/vuln/detail/CVE-2019-1125	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: hw: Spectre SWAPGS gadget vulnerability (CVE-2019-1125)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* fragmented packets timing out (BZ#1741129)\n\n* Backport TCP follow-up for small buffers (BZ#1741142)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:2695",
        "url": "https://access.redhat.com/errata/RHSA-2019:2695"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/articles/4329821",
        "url": "https://access.redhat.com/articles/4329821"
      },
      {
        "category": "external",
        "summary": "1724389",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1724389"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2695.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel security and bug fix update",
    "tracking": {
      "current_release_date": "2024-11-15T03:14:19+00:00",
      "generator": {
        "date": "2024-11-15T03:14:19+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2019:2695",
      "initial_release_date": "2019-09-10T17:57:42+00:00",
      "revision_history": [
        {
          "date": "2019-09-10T17:57:42+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-09-10T17:57:42+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-15T03:14:19+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
                  "product_id": "6Server-6.5.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
                  "product_id": "6Server-optional-6.5.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "perf-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "perf-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf-debuginfo@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-0:2.6.32-431.96.1.el6.x86_64",
                "product": {
                  "name": "python-perf-0:2.6.32-431.96.1.el6.x86_64",
                  "product_id": "python-perf-0:2.6.32-431.96.1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf@2.6.32-431.96.1.el6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-431.96.1.el6.src",
                "product": {
                  "name": "kernel-0:2.6.32-431.96.1.el6.src",
                  "product_id": "kernel-0:2.6.32-431.96.1.el6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-431.96.1.el6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
                "product": {
                  "name": "kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
                  "product_id": "kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-abi-whitelists@2.6.32-431.96.1.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-doc-0:2.6.32-431.96.1.el6.noarch",
                "product": {
                  "name": "kernel-doc-0:2.6.32-431.96.1.el6.noarch",
                  "product_id": "kernel-doc-0:2.6.32-431.96.1.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-431.96.1.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
                "product": {
                  "name": "kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
                  "product_id": "kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-431.96.1.el6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.96.1.el6.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-431.96.1.el6.src",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-431.96.1.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-431.96.1.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-431.96.1.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.96.1.el6.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-431.96.1.el6.src",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-431.96.1.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-431.96.1.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-431.96.1.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-1125",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2019-06-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1724389"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A Spectre gadget was found in the Linux kernel\u0027s implementation of system interrupts. An attacker with local access could use this information to reveal private data through a Spectre like side channel.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: hw: Spectre SWAPGS gadget vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article:  https://access.redhat.com/articles/4329821",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
          "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
          "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
          "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
          "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
          "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
          "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-1125"
        },
        {
          "category": "external",
          "summary": "RHBZ#1724389",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1724389"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-1125",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-1125"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-1125",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-1125"
        }
      ],
      "release_date": "2019-08-06T17:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-09-10T17:57:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
            "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2695"
        },
        {
          "category": "workaround",
          "details": "For mitigation related information, please refer to the Red Hat Knowledgebase article:  https://access.redhat.com/articles/4329821",
          "product_ids": [
            "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
            "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
            "6Server-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
            "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.src",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.96.1.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.96.1.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.96.1.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: hw: Spectre SWAPGS gadget vulnerability"
    }
  ]
}

CVE-2019-1125 (GCVE-0-2019-1125)

Vulnerability from cvelistv5 – Published: 2019-09-03 17:52 – Updated: 2024-08-04 18:06

Title

Windows Kernel Information Disclosure Vulnerability

Summary

An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The vulnerability would not allow an attacker to elevate user rights directly, but it could be used to obtain information that could be used to try to compromise the affected system further. On January 3, 2018, Microsoft released an advisory and security updates related to a newly-discovered class of hardware vulnerabilities (known as Spectre) involving speculative execution side channels that affect AMD, ARM, and Intel CPUs to varying degrees. This vulnerability, released on August 6, 2019, is a variant of the Spectre Variant 1 speculative execution side channel vulnerability and has been assigned CVE-2019-1125. Microsoft released a security update on July 9, 2019 that addresses the vulnerability through a software change that mitigates how the CPU speculatively accesses memory. Note that this vulnerability does not require a microcode update from your device OEM.

Severity ?

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C

CWE

Information Disclosure

Assigner

microsoft

References

URL

Tags

	https://portal.msrc.microsoft.com/en-US/security-…	x_refsource_MISC
	https://www.synology.com/security/advisory/Synolo…	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2019:2600	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:2609	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:2695	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:2696	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:2730	vendor-advisoryx_refsource_REDHAT
	https://kc.mcafee.com/corporate/index?page=conten…	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2019:2900	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:2899	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:2975	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:3011	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHBA-2019:2824	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:3220	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHBA-2019:3248	vendor-advisoryx_refsource_REDHAT
	http://packetstormsecurity.com/files/156337/SWAPG…	x_refsource_MISC
	http://www.huawei.com/en/psirt/security-advisorie…	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Microsoft

Windows 10 Version 1703

Affected: 10.0.0 , < publication (custom)
cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*

Microsoft	Windows 10 Version 1803	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1809:::::::x64:* cpe:2.3:o:microsoft:windows_10_1803:::::::x64:* cpe:2.3:o:microsoft:windows_10_1803:::::::arm64:*
Microsoft	Windows Server, version 1803 (Server Core Installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1803::::::::
Microsoft	Windows 10 Version 1809	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1809:::::::x86:* cpe:2.3:o:microsoft:windows_10_1809:::::::x64:* cpe:2.3:o:microsoft:windows_10_1809:::::::arm64:*
Microsoft	Windows Server 2019	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2019::::::::
Microsoft	Windows Server 2019 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2019::::::::
Microsoft	Windows 10 Version 1709 for 32-bit Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1709:::::::*
Microsoft	Windows 10 Version 1709	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1709:::::::*
Microsoft	Windows 10 Version 1903 for 32-bit Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows 10 Version 1903 for x64-based Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows 10 Version 1903 for ARM64-based Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows Server, version 1903 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1903::::::::
Microsoft	Windows 10 Version 1507	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1507:::::::x86:* cpe:2.3:o:microsoft:windows_10_1507:::::::x64:*
Microsoft	Windows 10 Version 1607	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1607:::::::x86:* cpe:2.3:o:microsoft:windows_10_1607:::::::x64:*
Microsoft	Windows Server 2016	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2016::::::::
Microsoft	Windows Server 2016 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2016::::::::
Microsoft	Windows 7	Affected: 6.1.0 , < publication (custom) cpe:2.3:o:microsoft:windows_7::sp1:::::x86:
Microsoft	Windows 7 Service Pack 1	Affected: 6.1.0 , < publication (custom) cpe:2.3:o:microsoft:windows_7::sp1:::::x64:
Microsoft	Windows 8.1	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_8.1:::::::x86:* cpe:2.3:o:microsoft:windows_8.1:::::::x64:* cpe:2.3:o:microsoft:windows_rt_8.1::::::::
Microsoft	Windows Server 2008 Service Pack 2	Affected: 6.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2008_sp2:::::::x64:* cpe:2.3:o:microsoft:windows_server_2008:-:sp2:::::itanium:*
Microsoft	Windows Server 2008 Service Pack 2 (Server Core installation)	Affected: 6.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2008_sp2:::::::x64:* cpe:2.3:o:microsoft:windows_server_2008_sp2:::::::x86:*
Microsoft	Windows Server 2008 Service Pack 2	Affected: 6.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2008_sp2:::::::x86:*
Microsoft	Windows Server 2008 R2 Systems Service Pack 1	Affected: 6.1.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2008_R2:::::::itanium:*
Microsoft	Windows Server 2008 R2 Service Pack 1	Affected: 6.1.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2008_R2:::::::x64:*
Microsoft	Windows Server 2008 R2 Service Pack 1 (Server Core installation)	Affected: 6.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2008_R2:::::::x64:*
Microsoft	Windows Server 2012	Affected: 6.2.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012:::::::x64:*
Microsoft	Windows Server 2012 (Server Core installation)	Affected: 6.2.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012:::::::x64:*
Microsoft	Windows Server 2012 R2	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:::::::x64:*
Microsoft	Windows Server 2012 R2 (Server Core installation)	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:::::::x64:*

Date Public ?

2019-08-06 07:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T18:06:31.693Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1125"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.synology.com/security/advisory/Synology_SA_19_32"
          },
          {
            "name": "RHSA-2019:2600",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2600"
          },
          {
            "name": "RHSA-2019:2609",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2609"
          },
          {
            "name": "RHSA-2019:2695",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2695"
          },
          {
            "name": "RHSA-2019:2696",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2696"
          },
          {
            "name": "RHSA-2019:2730",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2730"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10297"
          },
          {
            "name": "RHSA-2019:2900",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2900"
          },
          {
            "name": "RHSA-2019:2899",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2899"
          },
          {
            "name": "RHSA-2019:2975",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2975"
          },
          {
            "name": "RHSA-2019:3011",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3011"
          },
          {
            "name": "RHBA-2019:2824",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHBA-2019:2824"
          },
          {
            "name": "RHSA-2019:3220",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3220"
          },
          {
            "name": "RHBA-2019:3248",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHBA-2019:3248"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/156337/SWAPGS-Attack-Proof-Of-Concept.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200408-01-swapgs-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1703",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1803",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1803:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1803  (Server Core Installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1809",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows 10 Version 1709 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1709",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for x64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for ARM64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1903 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1507",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1607",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x86:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows 7",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 7 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:itanium:*"
          ],
          "platforms": [
            "32-bit Systems",
            "IA64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008  Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:itanium:*"
          ],
          "platforms": [
            "IA64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Systems Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2019-08-06T07:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries.\nTo exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The vulnerability would not allow an attacker to elevate user rights directly, but it could be used to obtain information that could be used to try to compromise the affected system further.\nOn January 3, 2018, Microsoft released an advisory and security updates\u202frelated to a newly-discovered class of hardware vulnerabilities (known as Spectre) involving speculative execution side channels that affect AMD, ARM, and Intel CPUs to varying degrees. This vulnerability, released on August 6, 2019, is a variant of the Spectre Variant 1 speculative execution side channel vulnerability and has been assigned CVE-2019-1125.\nMicrosoft released a security update on July 9, 2019 that addresses the vulnerability through a software change that mitigates how the CPU speculatively accesses memory. Note that this vulnerability does not require a microcode update from your device OEM."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information Disclosure",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-29T16:50:27.042Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1125"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.synology.com/security/advisory/Synology_SA_19_32"
        },
        {
          "name": "RHSA-2019:2600",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2600"
        },
        {
          "name": "RHSA-2019:2609",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2609"
        },
        {
          "name": "RHSA-2019:2695",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2695"
        },
        {
          "name": "RHSA-2019:2696",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2696"
        },
        {
          "name": "RHSA-2019:2730",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2730"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10297"
        },
        {
          "name": "RHSA-2019:2900",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2900"
        },
        {
          "name": "RHSA-2019:2899",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2899"
        },
        {
          "name": "RHSA-2019:2975",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2975"
        },
        {
          "name": "RHSA-2019:3011",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3011"
        },
        {
          "name": "RHBA-2019:2824",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHBA-2019:2824"
        },
        {
          "name": "RHSA-2019:3220",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3220"
        },
        {
          "name": "RHBA-2019:3248",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHBA-2019:3248"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/156337/SWAPGS-Attack-Proof-Of-Concept.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200408-01-swapgs-en"
        }
      ],
      "title": "Windows Kernel Information Disclosure Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2019-1125",
    "datePublished": "2019-09-03T17:52:41.000Z",
    "dateReserved": "2018-11-26T00:00:00.000Z",
    "dateUpdated": "2024-08-04T18:06:31.693Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHSA-2019_2695

CVE-2019-1125 (GCVE-0-2019-1125)

Tags

Sightings

Nomenclature