CVE-2019-25160 netlabel: fix out-of-bounds memory accesses

2024-02-2617:20:19

Linux

github.com

netlabel

memory accesses

linux kernel

AI Score

6.7

Confidence

Low

EPSS

Percentile

5.1%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

netlabel: fix out-of-bounds memory accesses

There are two array out-of-bounds memory accesses, one in
cipso_v4_map_lvl_valid(), the other in netlbl_bitmap_walk(). Both
errors are embarassingly simple, and the fixes are straightforward.

As a FYI for anyone backporting this patch to kernels prior to v4.8,
you’ll want to apply the netlbl_bitmap_walk() patch to
cipso_v4_bitmap_walk() as netlbl_bitmap_walk() doesn’t exist before
Linux v4.8.

CNA Affected

[
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "97bc3683c249",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "c61d01faa555",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "dc18101f95fa",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "1c973f9c7cc2",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "fcfe700acdc1",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "e3713abc4248",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "fbf9578919d6",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "446fda4f2682",
        "lessThan": "5578de4834fe",
        "versionType": "git"
      }
    ],
    "programFiles": [
      "net/ipv4/cipso_ipv4.c",
      "net/netlabel/netlabel_kapi.c"
    ],
    "defaultStatus": "unaffected"
  },
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "2.6.19"
      },
      {
        "status": "unaffected",
        "version": "0",
        "lessThan": "2.6.19",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "3.16.66",
        "versionType": "custom",
        "lessThanOrEqual": "3.16.*"
      },
      {
        "status": "unaffected",
        "version": "3.18.137",
        "versionType": "custom",
        "lessThanOrEqual": "3.18.*"
      },
      {
        "status": "unaffected",
        "version": "4.4.177",
        "versionType": "custom",
        "lessThanOrEqual": "4.4.*"
      },
      {
        "status": "unaffected",
        "version": "4.9.163",
        "versionType": "custom",
        "lessThanOrEqual": "4.9.*"
      },
      {
        "status": "unaffected",
        "version": "4.14.106",
        "versionType": "custom",
        "lessThanOrEqual": "4.14.*"
      },
      {
        "status": "unaffected",
        "version": "4.19.28",
        "versionType": "custom",
        "lessThanOrEqual": "4.19.*"
      },
      {
        "status": "unaffected",
        "version": "4.20.15",
        "versionType": "custom",
        "lessThanOrEqual": "4.20.*"
      },
      {
        "status": "unaffected",
        "version": "5.0",
        "versionType": "original_commit_for_fix",
        "lessThanOrEqual": "*"
      }
    ],
    "programFiles": [
      "net/ipv4/cipso_ipv4.c",
      "net/netlabel/netlabel_kapi.c"
    ],
    "defaultStatus": "affected"
  }
]