Cve-2019-11815

Mushoz · May 14, 2019, 10:59pm

Seeing as this is a remotely exploitable vulnerability, and routers are connected to the internet 24/7, this is probably something we want to be fixed. Is this vulnerability already gone in the latest kernel version in the master branch? What about the 18.06 and 17.01 branches? Is this also something for which we want to push out a new release so that less technically inclined people can update to protect themselves against this vulnerability? Details can be found here: https://threatpost.com/linux-kernel-remote-code-execution/144713/

slh · May 14, 2019, 11:22pm

This issue has been fixed in kernel 4.19.35, 4.14.112, 4.9.169, 4.4.179 and has been merged to OpenWrt/ master a bit over three weeks ago:
https://git.openwrt.org/?p=openwrt/openwrt.git;a=commitdiff;h=da5bd73d702e7cb9f7da174977b606ca12ffd96b

Mushoz · May 14, 2019, 11:23pm

That's good to hear! The article mentions that the vulnerability is difficult to exploit, but should an attacker be successful the implications are pretty big. Do you think this warrants a new release so that people can update without having to build their own images?

slh · May 14, 2019, 11:34pm

It has also been fixed in the openwrt-18.06 branch (which will become 18.06.3) around three weeks ago as well:
https://git.openwrt.org/?p=openwrt/openwrt.git;a=commitdiff;h=ac3b5f00e17de2c7791748f6fa434eb93ee3b66e

lede-17.01 has not been fixed yet (4.4.167), but 17.01 is basically EOL anyways and on borrowed time.

It's safe to assume that any new version will contain the fix (as their kernels will be updated before the release again), but this doesn't require new OpenWrt releases as RDS/ RDS_TCP (the faulty features) are not enabled on any target for OpenWrt; meaning that all images prebuilt by OpenWrt are not affected (only if you build OpenWrt from source and explicitly change this configuration, you may be affected).

Mushoz · May 14, 2019, 11:41pm

The features not even being enabled settles it then thank you very much for your thorough answers!

neheb · May 15, 2019, 12:58am

This is specific to intel processors AFAIK.

Mushoz · May 15, 2019, 7:04am

No, that's an entirely different vulnerability. This one affects all processors, since it's a software bug in the Linux kernel.

system · May 25, 2019, 7:04am

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.