PT-2019-3109 · Linux+3 · Linux Kernel+3

Syzbot

·

Publicado

2019-05-09

·

Atualizado

2023-11-09

·

CVE-2019-15216

CVSS v2.0

4.9

Média

VetorAV:L/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.0.14
Description The issue is related to a NULL pointer dereference in the drivers/usb/misc/yurex.c driver, caused by a malicious USB device. This can lead to a denial of service.
Recommendations For Linux kernel versions prior to 5.0.14, update to version 5.0.14 or later to resolve the issue. As a temporary workaround, consider disabling the use of USB devices from untrusted sources to minimize the risk of exploitation.

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALT-PU-2019-1789
ALT-PU-2019-1830
ALT-PU-2019-1896
ALT-PU-2020-1198
ALT-PU-2020-1501
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2019-03092
CVE-2019-15216
DLA-1884-1
DLA-1919-1
DLA-1919-2
OPENSUSE-SU-2019:2173-1
OPENSUSE-SU-2019:2181-1
OPENSUSE-SU-2019_2173-1
OPENSUSE-SU-2019_2181-1
SUSE-SU-2019:14218-1
SUSE-SU-2019:2412-1
SUSE-SU-2019:2414-1
SUSE-SU-2019:2424-1
SUSE-SU-2019:2648-1
SUSE-SU-2019:2651-1
SUSE-SU-2019:2658-1
SUSE-SU-2019:2738-1
SUSE-SU-2019:2756-1
SUSE-SU-2019:2949-1
SUSE-SU-2019:2950-1
SUSE-SU-2019:2984-1
SUSE-SU-2019_14218-1
USN-4115-1
USN-4115-2
USN-4118-1

Produtos afetados

Alt Linux
Linux Kernel
Suse
Ubuntu