CVE-2019-19054

🗓️ 18 Nov 2019 05:23:53Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 277 Views

A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures

Reporter	Title	Published	Views	Family All 275
ATTACKERKB	CVE-2019-19054	18 Nov 201906:15	–	attackerkb
Tenable Nessus	Amazon Linux 2 : kernel (ALAS-2020-1480)	26 Aug 202000:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-014)	2 May 202200:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2531)	9 Dec 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1012)	2 Jan 202000:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.5.0 : kernel (EulerOS-SA-2020-1042)	13 Jan 202000:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : kernel (EulerOS-SA-2020-1396)	15 Apr 202000:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : kernel (EulerOS-SA-2020-1674)	17 Jun 202000:00	–	nessus
Tenable Nessus	Fedora 30 : kernel (2019-021c968423)	27 Nov 201900:00	–	nessus
Tenable Nessus	Fedora 31 : kernel (2019-34a75d7e61)	27 Nov 201900:00	–	nessus

NVD

Node

linux linux_kernelRange≤5.3.11

Node

canonical ubuntu_linuxMatch14.04esm

canonical ubuntu_linuxMatch16.04esm

canonical ubuntu_linuxMatch18.04lts

canonical ubuntu_linuxMatch20.04lts

fedoraproject fedoraMatch30

fedoraproject fedoraMatch31

opensuse leapMatch15.1

Node

netapp active_iq_unified_managerMatch-vmware_vsphere

netapp aff_baseboard_management_controllerMatch-

netapp cloud_backupMatch-

netapp data_availability_servicesMatch-

netapp e-series_santricity_os_controllerMatch11.0

netapp e-series_santricity_os_controllerMatch11.0.0

netapp e-series_santricity_os_controllerMatch11.20

netapp e-series_santricity_os_controllerMatch11.25

netapp e-series_santricity_os_controllerMatch11.30

netapp e-series_santricity_os_controllerMatch11.30.5r3

netapp e-series_santricity_os_controllerMatch11.40

netapp e-series_santricity_os_controllerMatch11.40.3r2

netapp e-series_santricity_os_controllerMatch11.40.5

netapp e-series_santricity_os_controllerMatch11.50.1

netapp e-series_santricity_os_controllerMatch11.50.2-

netapp e-series_santricity_os_controllerMatch11.50.2p1

netapp e-series_santricity_os_controllerMatch11.60

netapp e-series_santricity_os_controllerMatch11.60.0

netapp e-series_santricity_os_controllerMatch11.60.1

netapp e-series_santricity_os_controllerMatch11.60.3

netapp e-series_santricity_os_controllerMatch11.70.1

netapp e-series_santricity_os_controllerMatch11.70.2

netapp fas/aff_baseboard_management_controllerMatch-

netapp hci_baseboard_management_controllerMatchh610s

netapp solidfire,_enterprise_sds_&_hci_storage_nodeMatch-

netapp solidfire_&_hci_management_nodeMatch-

netapp steelstore_cloud_integrated_storageMatch-

broadcom brocade_fabric_operating_system_firmwareMatch-

Node

netapp hci_compute_node_firmwareMatch-

AND

netapp hci_compute_nodeMatch-

Node

netapp solidfire_baseboard_management_controller_firmwareMatch-

AND

netapp solidfire_baseboard_management_controllerMatch-

Source	Link
github	www.github.com/torvalds/linux/commit/a7b2df76b42bdd026e3106cf2ba97db41345a177
usn	www.usn.ubuntu.com/4526-1/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PY7LJMSPAGRIKABJPDKQDTXYW3L5RX2T/
lists	www.lists.opensuse.org/opensuse-security-announce/2020-03/msg00021.html
security	www.security.netapp.com/advisory/ntap-20191205-0001/
usn	www.usn.ubuntu.com/4527-1/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3PSDE6PTOTVBK2YTKB2TFQP2SUBVSNF/
usn	www.usn.ubuntu.com/4525-1/

21 Nov 2024 04:34Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.14.7

CVSS 24.7

EPSS0.00039

CWE-401