Lucene search

Ubuntu.comUB:CVE-2019-19076

HistoryNov 18, 2019 - 12:00 a.m.

CVE-2019-19076

2019-11-1800:00:00

ubuntu.com

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.008 Low

EPSS

Percentile

81.5%

JSON

DISPUTED A memory leak in the nfp_abm_u32_knode_replace() function in
drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before
5.3.6 allows attackers to cause a denial of service (memory consumption),
aka CID-78beef629fd9. NOTE: This has been argued as not a valid
vulnerability. The upstream commit 78beef629fd9 was reverted.

Notes

Author	Note
sbeattie	reverted in 1d1997db870f4058676439ef7014390ba9e24eb2, in part due to upstream determining that there was no memory leak.

OSVersionArchitecturePackageVersionFilename
ubuntu19.04noarchlinux< 5.0.0-37.40UNKNOWN
ubuntu19.10noarchlinux< 5.3.0-22.24UNKNOWN
ubuntu19.04noarchlinux-aws< 5.0.0-1022.25UNKNOWN
ubuntu19.10noarchlinux-aws< 5.3.0-1007.8UNKNOWN
ubuntu18.04noarchlinux-aws-5.0< 5.0.0-1022.25~18.04.1UNKNOWN
ubuntu18.04noarchlinux-azure< 5.0.0-1027.29~18.04.1UNKNOWN
ubuntu19.04noarchlinux-azure< 5.0.0-1027.29UNKNOWN
ubuntu19.10noarchlinux-azure< 5.3.0-1007.8UNKNOWN
ubuntu18.04noarchlinux-gcp< 5.0.0-1026.27~18.04.1UNKNOWN
ubuntu19.04noarchlinux-gcp< 5.0.0-1026.27UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	19.04	noarch	linux	< 5.0.0-37.40	UNKNOWN
ubuntu	19.10	noarch	linux	< 5.3.0-22.24	UNKNOWN
ubuntu	19.04	noarch	linux-aws	< 5.0.0-1022.25	UNKNOWN
ubuntu	19.10	noarch	linux-aws	< 5.3.0-1007.8	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.0	< 5.0.0-1022.25~18.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-azure	< 5.0.0-1027.29~18.04.1	UNKNOWN
ubuntu	19.04	noarch	linux-azure	< 5.0.0-1027.29	UNKNOWN
ubuntu	19.10	noarch	linux-azure	< 5.3.0-1007.8	UNKNOWN
ubuntu	18.04	noarch	linux-gcp	< 5.0.0-1026.27~18.04.1	UNKNOWN
ubuntu	19.04	noarch	linux-gcp	< 5.0.0-1026.27	UNKNOWN

Rows per page:

1-10 of 221

References

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.6

github.com/torvalds/linux/commit/78beef629fd95be4ed853b2d37b832f766bd96ca

launchpad.net/bugs/cve/CVE-2019-19076

lore.kernel.org/lkml/[email protected]/

lore.kernel.org/netdev/[email protected]/

nvd.nist.gov/vuln/detail/CVE-2019-19076

security-tracker.debian.org/tracker/CVE-2019-19076

ubuntu.com/security/notices/USN-4209-1

www.cve.org/CVERecord?id=CVE-2019-19076

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.008 Low

EPSS

Percentile

81.5%

JSON

Related for UB:CVE-2019-19076