Lucene search

K

GoogleOSV:CVE-2019-19050

HistoryNov 18, 2019 - 6:15 a.m.

CVE-2019-19050

2019-11-1806:15:11

Google

osv.dev

9

AI Score

6.3

Confidence

High

EPSS

0.015

Percentile

86.9%

A memory leak in the crypto_reportstat() function in crypto/crypto_user_stat.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypto_reportstat_alg() failures, aka CID-c03b04dcdba1.

References

packetstormsecurity.com/files/156455/Kernel-Live-Patch-Security-Notice-LSN-0063-1.html

github.com/torvalds/linux/commit/c03b04dcdba1da39903e23cc4d072abf8f68f2dd

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3PSDE6PTOTVBK2YTKB2TFQP2SUBVSNF/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PY7LJMSPAGRIKABJPDKQDTXYW3L5RX2T/

security.netapp.com/advisory/ntap-20191205-0001/

usn.ubuntu.com/4258-1/

usn.ubuntu.com/4284-1/

AI Score

6.3

Confidence

High

EPSS

0.015

Percentile

86.9%

Related for OSV:CVE-2019-19050

debiancve1 redhatcve1 cvelist1 prion1 ubuntucve1 cve1 nvd1 ubuntu2 nessus4 openvas17 symantec1 fedora15 ibm1