Veracode Vulnerability DatabaseVERACODE:29330Denial Of Service (DoS)
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
kernel is vulnerable to denial of service. An attacker can cause a use=after=free and OOPS in drivers/char/ipmi/ipmi_msghandler.c by arranging for certain simultaneous execution of the code
| CPE | Name | Operator | Version |
|---|---|---|---|
| kernel | eq | 4.18.0__80.el8 |
References
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=77f8269606bf95fcb232ee86f6da80886f1dfae8
lists.opensuse.org/opensuse-security-announce/2019-05/msg00037.html
www.securityfocus.com/bid/107145
access.redhat.com/errata/RHSA-2019:1167
access.redhat.com/security/updates/classification/#important
access.redhat.com/security/vulnerabilities/mds
bugzilla.redhat.com/show_bug.cgi?id=1681007
cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20.5
github.com/torvalds/linux/commit/77f8269606bf95fcb232ee86f6da80886f1dfae8
security.netapp.com/advisory/ntap-20190327-0002/
usn.ubuntu.com/3930-1/
usn.ubuntu.com/3930-2/
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C