PT-2019-4493 · Linux+2 · Linux Kernel+2

Publicado

2019-04-29

Atualizado

2025-09-29

CVE-2019-19816

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel version 5.0.21

Description The issue is related to a buffer overflow in the btrfs map block function of the Linux kernel, specifically when handling a crafted btrfs filesystem image with a certain configuration. This can lead to a slab-out-of-bounds write access, potentially causing a denial of service. The problem arises when the number of data stripes is set to 1, which is mishandled by the btrfs map block function in fs/btrfs/volumes.c.

Recommendations For Linux kernel version 5.0.21, consider disabling the btrfs map block function or restricting access to the btrfs filesystem until a patch is available. Avoid mounting crafted btrfs filesystem images to minimize the risk of exploitation.

Exploit

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2019-2321

ALT-PU-2019-2339

ALT-PU-2019-2488

ALT-PU-2019-2746

ALT-PU-2020-1198

ALT-PU-2020-1501

ALT-PU-2020-2410

ALT-PU-2020-2433

ALT-PU-2020-2737

ALT-PU-2020-3454

ALT-PU-2021-1531

ALT-PU-2021-1840

BDU:2020-00352

CVE-2019-19816

DLA-2385-1

DLA-2483-1

DLA-2586-1

ELSA-2020-5995

USN-4414-1

USN-4708-1

USN-4709-1

Produtos afetados

Alt Linux

Linux Kernel

Ubuntu

PT-2019-4493 · Linux+2 · Linux Kernel+2

CVE-2019-19816

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 49