CVE-2019-19052
published 2019-11-18CVE-2019-19052: A memory leak in the gs_can_open() function in drivers/net/can/usb/gs_usb.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A memory leak in the gs_can_open() function in drivers/net/can/usb/gs_usb.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-fb5be6a7b486.
Affected
39 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | linux | < linux 5.3.15-1 (bookworm) | linux 5.3.15-1 (bookworm) |
| linux | linux_kernel | >= 0 < 5.3.15-1 | 5.3.15-1 |
| linux | linux_kernel | >= 0 < 5.3.15-1 | 5.3.15-1 |
| linux | linux_kernel | >= 0 < 5.3.15-1 | 5.3.15-1 |
| linux | linux_kernel | >= 0 < 5.3.15-1 | 5.3.15-1 |
| linux | linux_kernel | >= 0 < 4.4.0-171.200 | 4.4.0-171.200 |
| linux | linux_kernel | >= 0 < 4.15.0-74.84 | 4.15.0-74.84 |
| linux | linux_kernel | >= 3.16 < 3.16.79 | 3.16.79 |
| linux | linux_kernel | >= 3.17 < 4.4.201 | 4.4.201 |
| linux | linux_kernel | >= 4.10 < 4.14.154 | 4.14.154 |
| linux | linux_kernel | >= 4.15 < 4.19.84 | 4.19.84 |
| linux | linux_kernel | >= 4.20 < 5.3.11 | 5.3.11 |
| linux | linux_kernel | >= 4.5 < 4.9.201 | 4.9.201 |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv9.8CRITICAL