CVE-2019-19054
published 2019-11-18CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a…
medium4.7CVSS 3.1
AVLACHPRLUINSUCNINAH
A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures, aka CID-a7b2df76b42b.
Affected
34 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | linux | < linux 5.5.13-1 (bookworm) | linux 5.5.13-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| linux | linux_kernel | <= 5.3.11 | — |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
| linux | linux_kernel | >= 0 < 4.4.0-190.220 | 4.4.0-190.220 |
| linux | linux_kernel | >= 0 < 4.15.0-118.119 | 4.15.0-118.119 |
| linux | linux_kernel | >= 0 < 5.4.0-48.52 | 5.4.0-48.52 |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
| netapp | e-series_santricity_os_controller | — | — |
CVSS provenance
nvdv3.14.7MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM