PT-2019-14591 · Linux+7 · Linux Kernel+7

Published

2019-09-09

·

Updated

2026-03-14

·

CVE-2019-16233

CVSS v2.0

4.7

Medium

VectorAV:L/AC:M/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel version 5.2.14
Description The issue is related to the drivers/scsi/qla2xxx/qla os.c file in the Linux kernel, where it fails to check the return value of alloc workqueue, potentially leading to a NULL pointer dereference.
Recommendations For Linux kernel version 5.2.14, ensure that the return value of alloc workqueue is properly checked to prevent NULL pointer dereferences. Consider applying a patch that fixes this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2020:4431
ALT-PU-2019-2700
CESA-2020_4060
CESA-2020_4431
CESA-2020_4609
CVE-2019-16233
ECHO-178A-9D81-B55E
OPENSUSE-SU-2019:2444-1
OPENSUSE-SU-2019:2503-1
OPENSUSE-SU-2019_2444-1
OPENSUSE-SU-2019_2503-1
RHSA-2020:4060
RHSA-2020:4062
RHSA-2020:4431
RHSA-2020:4609
RHSA-2020_4060
RHSA-2020_4062
RHSA-2020_4431
RHSA-2020_4609
SUSE-SU-2019:14218-1
SUSE-SU-2019:2946-1
SUSE-SU-2019:2947-1
SUSE-SU-2019:2948-1
SUSE-SU-2019:2949-1
SUSE-SU-2019:2950-1
SUSE-SU-2019:2951-1
SUSE-SU-2019:2952-1
SUSE-SU-2019:2953-1
SUSE-SU-2019:2984-1
SUSE-SU-2019:3200-1
SUSE-SU-2019:3294-1
SUSE-SU-2019:3295-1
SUSE-SU-2019_14218-1
SUSE-SU-2020:0093-1
USN-4226-1
USN-4227-1
USN-4227-2
USN-4346-1

Affected Products

Alt Linux
Almalinux
Centos
Debian
Linux Kernel
Red Hat
Suse
Ubuntu