PT-2019-4255 · Linux+3 · Linux Kernel+3

Publicado

2019-09-09

·

Atualizado

2025-09-29

·

CVE-2019-19036

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.3.12
Description The issue is related to a NULL pointer dereference in the btrfs root node function, located in fs/btrfs/ctree.c. This can be triggered because rcu dereference(root->node) can be zero, leading to a potential denial of service. An attacker could exploit this to cause a service disruption.
Recommendations For Linux kernel versions through 5.3.12, update to a version newer than 5.3.12 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2019-3180
ALT-PU-2019-3268
ALT-PU-2019-3295
ALT-PU-2020-1198
ALT-PU-2020-1421
ALT-PU-2020-1450
ALT-PU-2020-1501
ALT-PU-2020-1714
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2019-04856
CVE-2019-19036
OPENSUSE-SU-2020:0336-1
OPENSUSE-SU-2020_0336-1
SUSE-SU-2020:0511-1
SUSE-SU-2020:0558-1
SUSE-SU-2020:0559-1
SUSE-SU-2020:0560-1
SUSE-SU-2020:0580-1
SUSE-SU-2020:0584-1
SUSE-SU-2020:0599-1
SUSE-SU-2020:0605-1
SUSE-SU-2020:0613-1
SUSE-SU-2020:1663-1
SUSE-SU-2020_0558-1
SUSE-SU-2020_0559-1
SUSE-SU-2020_0580-1
SUSE-SU-2020_1663-1
USN-4414-1
USN-4439-1

Produtos afetados

Alt Linux
Linux Kernel
Suse
Ubuntu