PT-2019-14915 · Linux+2 · Linux Kernel+2

Hulk Robot

Published

2015-02-17

Updated

2021-07-21

CVE-2019-16995

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.0.3

Description A memory leak exists in the hsr dev finalize() function in net/hsr/hsr device.c, which occurs when hsr add port fails to add a port. This issue may cause denial of service.

Recommendations For Linux kernel versions prior to 5.0.3, update to version 5.0.3 or later to resolve the issue.

Exploit

Fix

DoS

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

ALT-PU-2015-1186

ALT-PU-2015-1849

ALT-PU-2016-1262

ALT-PU-2017-1299

ALT-PU-2018-1557

ALT-PU-2019-1476

ALT-PU-2019-1477

ALT-PU-2019-1506

ALT-PU-2019-1552

CVE-2019-16995

OPENSUSE-SU-2019:2444-1

OPENSUSE-SU-2019:2503-1

OPENSUSE-SU-2019_2444-1

OPENSUSE-SU-2019_2503-1

SUSE-SU-2019:2946-1

SUSE-SU-2019:2947-1

SUSE-SU-2019:2949-1

SUSE-SU-2019:2951-1

SUSE-SU-2019:2952-1

SUSE-SU-2019:2953-1

SUSE-SU-2019:2984-1

SUSE-SU-2019:3200-1

SUSE-SU-2019:3294-1

SUSE-SU-2019:3295-1

SUSE-SU-2020:0093-1

Affected Products

Alt Linux

Linux Kernel

Suse

PT-2019-14915 · Linux+2 · Linux Kernel+2

CVE-2019-16995

Weakness Enumeration

Related Identifiers

Affected Products

References · 602