Vulnerability Details : CVE-2019-13351
Potential exploit
posix/JackSocket.cpp in libjack in JACK2 1.9.1 through 1.9.12 (as distributed with alsa-plugins 1.1.7 and later) has a "double file descriptor close" issue during a failed connection attempt when jackd2 is not running. Exploitation success depends on multithreaded timing of that double close, which can result in unintended information disclosure, crashes, or file corruption due to having the wrong file associated with the file descriptor.
Vulnerability category: Information leak
Products affected by CVE-2019-13351
- cpe:2.3:a:alsa-project:alsa:*:*:*:*:*:*:*:*
- cpe:2.3:a:jackaudio:jack2:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2019-13351
0.26%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 47 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2019-13351
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST | |
|
8.1
|
HIGH | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.2
|
5.9
|
NIST |
References for CVE-2019-13351
-
https://github.com/jackaudio/jack2/pull/480
Set fSocket to -1 after close on an error to prevent a double close. by yasij · Pull Request #480 · jackaudio/jack2 · GitHubPatch;Third Party Advisory
-
https://github.com/xbmc/xbmc/issues/16258
Sporadic crash when during on my TV/Receiver due to double close() on the same fd in ActiveAE · Issue #16258 · xbmc/xbmc · GitHubExploit;Third Party Advisory
Jump to