PT-2019-4204 · Linux+6 · Linux Kernel+6

Published

2019-10-01

·

Updated

2022-11-07

·

CVE-2019-19063

CVSS v2.0

4.9

Medium

VectorAV:L/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.3.11
Description The issue is related to two memory leaks in the rtl usb probe() function in the Linux kernel, which can cause a denial of service due to memory consumption. This can be exploited by attackers to disrupt service.
Recommendations For Linux kernel versions prior to 5.3.11, update to a version that includes the fix for the memory leaks in the rtl usb probe() function. As a temporary workaround, consider restricting access to the rtl usb probe() function to minimize the risk of exploitation.

Fix

DoS

Memory Leak

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-400

Related Identifiers

ALSA-2020:4431
ALT-PU-2019-3180
ALT-PU-2019-3184
ALT-PU-2019-3268
ALT-PU-2020-1198
ALT-PU-2020-1421
ALT-PU-2020-1450
ALT-PU-2020-1501
ALT-PU-2020-1714
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2019-04801
CESA-2020_4060
CESA-2020_4431
CESA-2020_4609
CVE-2019-19063
OPENSUSE-SU-2019:2675-1
OPENSUSE-SU-2019_2675-1
RHSA-2020:4060
RHSA-2020:4062
RHSA-2020:4431
RHSA-2020:4609
RHSA-2020_4060
RHSA-2020_4062
RHSA-2020_4431
RHSA-2020_4609
SUSE-SU-2019:3200-1
SUSE-SU-2019:3289-1
SUSE-SU-2019:3316-1
SUSE-SU-2019:3317-1
SUSE-SU-2019:3371-1
SUSE-SU-2019:3372-1
SUSE-SU-2019:3381-1
SUSE-SU-2020:0093-1
SUSE-SU-2020:0599-1
SUSE-SU-2020:0613-1
SUSE-SU-2020:3503-1
SUSE-SU-2021:0437-1
USN-4254-1
USN-4254-2
USN-4284-1
USN-4285-1
USN-4287-1
USN-4287-2

Affected Products

Alt Linux
Almalinux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu