exploitDog

CVE-2019-15916

Опубликовано: 04 сент. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service.

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html
Mailing List
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3309
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3517
Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0740
Third Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.1
Release Notes
Vendor Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=895a5e96dbd6386c8e78e5b78e067dcc67b7f0ab
Patch
Vendor Advisory
https://security.netapp.com/advisory/ntap-20191004-0001/
Third Party Advisory
https://support.f5.com/csp/article/K57418558?utm_source=f5support&amp%3Butm_medium=RSS
http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html
Mailing List
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3309
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3517
Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0740
Third Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.1
Release Notes
Vendor Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=895a5e96dbd6386c8e78e5b78e067dcc67b7f0ab
Patch
Vendor Advisory
https://security.netapp.com/advisory/ntap-20191004-0001/
Third Party Advisory
https://support.f5.com/csp/article/K57418558?utm_source=f5support&amp%3Butm_medium=RSS

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 2.6.38 (включая) до 3.16.70 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 3.17 (включая) до 3.18.137 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 3.19 (включая) до 4.4.177 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 4.5 (включая) до 4.9.163 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 4.10 (включая) до 4.14.106 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 4.15 (включая) до 4.19.28 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 4.20 (включая) до 4.20.15 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.0 (включая) до 5.0.1 (исключая)

EPSS

Процентиль: 85%

0.02621

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-401

Связанные уязвимости

CVE-2019-15916

CVSS3: 7.5

ubuntu

почти 6 лет назад

An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service.

CVE-2019-15916

CVSS3: 5.5

redhat

почти 6 лет назад

An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service.

CVE-2019-15916

CVSS3: 7.5

debian

почти 6 лет назад

An issue was discovered in the Linux kernel before 5.0.1. There is a m ...

GHSA-mvp8-c5hj-59c5

CVSS3: 7.5

github

около 3 лет назад

An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service.

ELSA-2020-5532

oracle-oval

больше 5 лет назад

ELSA-2020-5532: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 85%

0.02621

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-401