PT-2019-6459 · Linux+2 · Linux Kernel+2

Gen Zhang

·

Publicado

2019-05-24

·

Atualizado

2026-03-13

·

CVE-2019-12381

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.1.5
Description An issue was discovered in the ip ra control function in the net/ipv4/ip sockglue.c component of the Linux kernel. This issue is related to errors in pointer dereferencing, which might allow an attacker to cause a denial of service, resulting in a system crash due to a NULL pointer dereference. However, it is noted that this issue is disputed because the affected variable is never used if it is NULL.
Recommendations For Linux kernel versions through 5.1.5, update to a version later than 5.1.5 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific issue.

Correção

DoS

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALT-PU-2019-2024
ALT-PU-2019-2036
ALT-PU-2019-2120
ALT-PU-2019-2311
ALT-PU-2020-1198
ALT-PU-2020-1501
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2024-09046
CVE-2019-12381
ECHO-916E-D5A5-D895

Produtos afetados

Alt Linux
Debian
Linux Kernel