PT-2019-1726 · Linux+5 · Linux Kernel+5

Felix Wilhelm

+1

·

Published

2019-02-07

·

Updated

2024-06-15

·

CVE-2019-7221

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 4.20.5
Description The issue is related to a Use-after-Free in the KVM implementation of the Linux kernel. This could potentially allow an attacker to cause a denial of service or execute arbitrary code.
Recommendations For Linux kernel versions through 4.20.5, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2019-1231
ALT-PU-2019-1251
ALT-PU-2019-1252
ALT-PU-2019-1285
ALT-PU-2019-1286
ALT-PU-2019-1363
ALT-PU-2020-1198
ALT-PU-2020-1501
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2019-01352
CESA-2019_0818
CVE-2019-7221
DLA-1731-1
DLA-1731-2
DLA-1771-1
MGASA-2019-0097
MGASA-2019-0098
MGASA-2019-0171
OPENSUSE-SU-2019:0203-1
OPENSUSE-SU-2019_0203-1
OPENSUSE-SU-2019_0274-1
OPENSUSE-SU-2024:10728-1
OPENSUSE-SU-2024:13704-1
RHSA-2019:0818
RHSA-2019:0833
RHSA-2019:3967
RHSA-2019:4058
RHSA-2019_0818
RHSA-2019_0833
SUSE-SU-2019:0541-1
SUSE-SU-2019:0645-1
SUSE-SU-2019:0672-1
SUSE-SU-2019:0683-1
SUSE-SU-2019:0709-1
SUSE-SU-2019:0722-1
SUSE-SU-2019:0726-1
SUSE-SU-2019:0740-1
SUSE-SU-2019:0745-1
SUSE-SU-2019:0754-1
SUSE-SU-2019:0765-1
SUSE-SU-2019:0767-1
SUSE-SU-2019:0784-1
SUSE-SU-2019:0785-1
SUSE-SU-2019:0828-1
SUSE-SU-2019:0845-1
SUSE-SU-2019:0901-1
SUSE-SU-2019:1289-1
USN-3930-1
USN-3930-2
USN-3931-1
USN-3931-2
USN-3932-1
USN-3932-2

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu