PT-2019-4947 · Linux+6 · Linux Kernel+6

Robert Frohl

·

Publicado

2019-10-22

·

Atualizado

2024-08-05

·

CVE-2019-19046

CVSS v2.0

6.8

Média

VetorAV:N/AC:L/Au:S/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.3.11
Description The issue is related to a memory leak in the ipmi bmc register() function, which can be triggered by causing the ida simple get() function to fail. This can lead to a denial of service due to memory consumption. However, it is noted that third parties dispute the relevance of this issue because an attacker cannot realistically control this failure at probe time.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Leak

Resource Exhaustion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-401CWE-400

Identificadores relacionados

ALSA-2020:4431
ALT-PU-2019-3180
ALT-PU-2019-3184
ALT-PU-2019-3268
ALT-PU-2020-1198
ALT-PU-2020-1421
ALT-PU-2020-1450
ALT-PU-2020-1501
ALT-PU-2020-1714
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2020-01564
CESA-2020_4060
CESA-2020_4431
CESA-2020_4609
CVE-2019-19046
OPENSUSE-SU-2019:2675-1
OPENSUSE-SU-2019_2675-1
RHSA-2020:3545
RHSA-2020:4060
RHSA-2020:4062
RHSA-2020:4431
RHSA-2020:4609
RHSA-2020:5206
RHSA-2020:5656
RHSA-2020_4060
RHSA-2020_4062
RHSA-2020_4431
RHSA-2020_4609
SUSE-SU-2019:3200-1
SUSE-SU-2019:3317-1
SUSE-SU-2019:3372-1
SUSE-SU-2020:0093-1
SUSE-SU-2020:0613-1
USN-4302-1
USN-4319-1
USN-4325-1

Produtos afetados

Alt Linux
Almalinux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu