PT-2019-4255 · Linux+3 · Linux Kernel+3

Published

2019-09-09

·

Updated

2025-09-29

·

CVE-2019-19036

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.3.12
Description The issue is related to a NULL pointer dereference in the btrfs root node function, located in fs/btrfs/ctree.c. This can be triggered because rcu dereference(root->node) can be zero, leading to a potential denial of service. An attacker could exploit this to cause a service disruption.
Recommendations For Linux kernel versions through 5.3.12, update to a version newer than 5.3.12 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2019-3180
ALT-PU-2019-3268
ALT-PU-2019-3295
ALT-PU-2020-1198
ALT-PU-2020-1421
ALT-PU-2020-1450
ALT-PU-2020-1501
ALT-PU-2020-1714
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2019-04856
CVE-2019-19036
OPENSUSE-SU-2020:0336-1
OPENSUSE-SU-2020_0336-1
SUSE-SU-2020:0511-1
SUSE-SU-2020:0558-1
SUSE-SU-2020:0559-1
SUSE-SU-2020:0560-1
SUSE-SU-2020:0580-1
SUSE-SU-2020:0584-1
SUSE-SU-2020:0599-1
SUSE-SU-2020:0605-1
SUSE-SU-2020:0613-1
SUSE-SU-2020:1663-1
SUSE-SU-2020_0558-1
SUSE-SU-2020_0559-1
SUSE-SU-2020_0580-1
SUSE-SU-2020_1663-1
USN-4414-1
USN-4439-1

Affected Products

Alt Linux
Linux Kernel
Suse
Ubuntu