PT-2019-4655 · Linux+2 · Linux Kernel+2

Xing Gaopeng

Published

2019-03-03

Updated

2021-05-28

CVE-2019-16413

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.0.4

Description An issue in the Linux kernel causes an infinite loop and denial of service on SMP systems due to improper protection of the i size write() function. This can lead to a denial of service when exploited by a remote attacker.

Recommendations For Linux kernel versions prior to 5.0.4, update to version 5.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the 9p filesystem to minimize the risk of exploitation.

Exploit

Fix

DoS

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

ALT-PU-2019-1506

ALT-PU-2019-1552

ALT-PU-2020-1198

ALT-PU-2020-1501

ALT-PU-2020-2410

ALT-PU-2020-2433

ALT-PU-2021-1870

BDU:2020-00843

CVE-2019-16413

SUSE-SU-2019:14218-1

SUSE-SU-2019:2949-1

SUSE-SU-2019:2950-1

SUSE-SU-2019:2984-1

SUSE-SU-2019_14218-1

Affected Products

Alt Linux

Linux Kernel

Suse

PT-2019-4655 · Linux+2 · Linux Kernel+2

CVE-2019-16413

Weakness Enumeration

Related Identifiers

Affected Products

References · 185