ASA-2019-00569 – Intel NUC: Memory corruption in system firmware

Memory corruption in system firmware for Intel NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

ASA-2019-00568 – Intel NUC: Pointer corruption in system firmware

Pointer corruption in system firmware for Intel NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

ASA-2019-00567 – Intel Smart Connect Technology: Improper file permission in software

Improper file permission in software installer for Intel(R) Smart Connect Technology for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00566 – Intel Active System Console: Insufficient path checking in the installer

Insufficient path checking in the installer for Intel Active System Console before version 8.0 Build 24 may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00465 – Linux kernel: Broken permission and object lifetime handling for PTRACE_TRACEME

A flaw was found in the way PTRACE_TRACEME functionality was handled in the Linux kernel. The kernel's implementation of ptrace can inadvertently grant elevated permissions to an attacker who can then abuse the relationship between the tracer and the process being traced. This flaw could allow a local, unprivileged user to increase their privileges on the system or cause a denial of service.