Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2019-16089

Опубликовано: 06 сент. 2019
Источник: redhat
CVSS3: 4.1
EPSS Низкий

Описание

An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return value.

An improper return check flaw was found in the Linux kernel’s network block device driver functionality when the user call query to check the status of existing network block devices. This flaw allows a local user to crash the system.

Отчет

The impact of this issue is Low, because attack is specific for certain network block device usage and could be triggered only by local user with access to the device (resulting denial-of-service) and attack is complex, because could happen only if specific condition (out of memory) at the moment of the attack is met.

Меры по смягчению последствий

To mitigate this issue, prevent module nbd from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-altNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelFix deferred
Red Hat Enterprise Linux 8kernel-rtFix deferred
Red Hat Enterprise Linux 9kernelFix deferred
Red Hat Enterprise MRG 2kernel-rtNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-253
https://bugzilla.redhat.com/show_bug.cgi?id=1751393kernel: Improper return check in nbd_genl_status function in drivers/block/nbd.c

EPSS

Процентиль: 17%
0.00054
Низкий

4.1 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2019-16089

CVSS3: 4.1
ubuntu
почти 6 лет назад

An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return value.

nvd логотип

CVE-2019-16089

CVSS3: 4.1
nvd
почти 6 лет назад

An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return value.

debian логотип

CVE-2019-16089

CVSS3: 4.1
debian
почти 6 лет назад

An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_s ...

github логотип

GHSA-mh85-xmf9-rh86

github
около 3 лет назад

An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return value.

fstec логотип

BDU:2019-03478

CVSS3: 4.1
fstec
почти 6 лет назад

Уязвимость функции nbd_genl_status ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 17%
0.00054
Низкий

4.1 Medium

CVSS3