CVE-2019-3900

2019-04-25T00:00:00
ID UB:CVE-2019-3900
Type ubuntucve
Reporter ubuntu.com
Modified 2019-04-25T00:00:00

Description

An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario.

Bugs

  • <https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3900>