Lucene search

K
f5F5F5:K57536416
HistoryOct 19, 2020 - 12:00 a.m.

K57536416 : Kernel vulnerability CVE-2019-14835

2020-10-1900:00:00
my.f5.com
17

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

29.4%

Security Advisory Description

A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel’s vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host. (CVE-2019-14835)

Impact

There is no impact; F5 products are not affected by this vulnerability.