CVE-2019-19462
published 2019-11-30CVE-2019-19462: relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL…
PriorityP418medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
0.46%
36.3th percentile
relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | linux | < linux 5.6.14-2 (bookworm) | linux 5.6.14-2 (bookworm) |
| linux | linux_kernel | <= 5.4.1 | — |
| linux | linux_kernel | >= 0 < 5.6.14-2 | 5.6.14-2 |
| linux | linux_kernel | >= 0 < 5.6.14-2 | 5.6.14-2 |
| linux | linux_kernel | >= 0 < 5.6.14-2 | 5.6.14-2 |
| linux | linux_kernel | >= 0 < 5.6.14-2 | 5.6.14-2 |
| linux | linux_kernel | >= 0 < 4.15.0-109.110 | 4.15.0-109.110 |
| linux | linux_kernel | >= 0 < 5.4.0-42.46 | 5.4.0-42.46 |
| linux | linux_kernel | >= 0 < 4.4.0-184.214 | 4.4.0-184.214 |
| linux | linux_kernel | >= 0 < 4.15.0-112.113 | 4.15.0-112.113 |
| linux | linux_kernel | >= 0 < 5.4.0-45.49 | 5.4.0-45.49 |
| netapp | active_iq_unified_manager | >= 9.5 | — |
| opensuse | leap | — | — |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvdv2.04.9MEDIUMAV:L/AC:L/Au:N/C:N/I:N/A:C
osv5.5MEDIUM
vendor_debian5.5MEDIUM
vendor_redhat5.5MEDIUM
vendor_ubuntu5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-87g6-m6v4-rm4w: relay_open in kernel/relay
ghsa_unreviewed·2022-05-24
CVE-2019-19462 [MEDIUM] CWE-476 GHSA-87g6-m6v4-rm4w: relay_open in kernel/relay
relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.
OSV
linux-hwe, linux-aws-5.3, linux-azure-5.3, linux-gcp-5.3, linux-gke-5.3, linux-hwe, linux-oracle-5.3, linux-raspi2-5.3 vulnerabilities
osv·2020-07-31·CVSS 4.1
CVE-2019-16089 [MEDIUM] linux-hwe, linux-aws-5.3, linux-azure-5.3, linux-gcp-5.3, linux-gke-5.3, linux-hwe, linux-oracle-5.3, linux-raspi2-5.3 vulnerabilities
linux-hwe, linux-aws-5.3, linux-azure-5.3, linux-gcp-5.3, linux-gke-5.3, linux-hwe, linux-oracle-5.3, linux-raspi2-5.3 vulnerabilities
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of
service (system crash). (CVE-2019-16089)
It was discovered that the kernel->user space relay implementation in the
Linux kernel did not properly check return values in some situations. A
local attacker could possibly use this to cause a denial of service (system
crash). (CVE-2019-19462)
Chuhong Yuan discovered that go7007 USB audio device driver in the Linux
kernel did not properly deallocate memory in some failure conditions. A
physically proximat
OSV
linux, linux-aws, linux-azure, linux-azure-5.4, linux-gcp, linux-hwe-5.4, linux-kvm, linux-oracle, linux-raspi, linux-raspi-5.4, linux-riscv vulnerabilities
osv·2020-07-27·CVSS 4.1
CVE-2019-16089 [MEDIUM] linux, linux-aws, linux-azure, linux-azure-5.4, linux-gcp, linux-hwe-5.4, linux-kvm, linux-oracle, linux-raspi, linux-raspi-5.4, linux-riscv vulnerabilities
linux, linux-aws, linux-azure, linux-azure-5.4, linux-gcp, linux-hwe-5.4, linux-kvm, linux-oracle, linux-raspi, linux-raspi-5.4, linux-riscv vulnerabilities
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of
service (system crash). (CVE-2019-16089)
It was discovered that the kernel->user space relay implementation in the
Linux kernel did not properly check return values in some situations. A
local attacker could possibly use this to cause a denial of service (system
crash). (CVE-2019-19462)
Mauricio Faria de Oliveira discovered that the aufs implementation in the
Linux kernel improperly managed inode reference counts in the
vfsub_
OSV
linux-gke-5.0, linux-oem-osp1 vulnerabilities
osv·2020-07-27·CVSS 4.1
CVE-2019-16089 [MEDIUM] linux-gke-5.0, linux-oem-osp1 vulnerabilities
linux-gke-5.0, linux-oem-osp1 vulnerabilities
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of
service (system crash). (CVE-2019-16089)
It was discovered that the btrfs file system implementation in the Linux
kernel did not properly validate file system metadata in some situations.
An attacker could use this to construct a malicious btrfs image that, when
mounted, could cause a denial of service (system crash). (CVE-2019-19036)
It was discovered that the kernel->user space relay implementation in the
Linux kernel did not properly check return values in some situations. A
local attacker could possibly use this to cause a denial o
OSV
Kernel Live Patch Security Notice
osv·2020-07-27·CVSS 5.5
CVE-2019-19462 [MEDIUM] Kernel Live Patch Security Notice
Kernel Live Patch Security Notice
Relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local
users to cause a denial of service (such as relay blockage) by triggering a
NULL alloc_percpu result. (CVE-2019-19462)
Fan Yang discovered that the mremap implementation in the Linux kernel did
not properly handle DAX Huge Pages. A local attacker with access to DAX
storage could use this to gain administrative privileges. (CVE-2020-10757)
It was discovered that the DesignWare SPI controller driver in the Linux
kernel contained a race condition. A local attacker could possibly use this
to cause a denial of service (system crash). (CVE-2020-12769)
In the Linux kernel before 5.4.16, a race condition in tty->disc_data
handling in the slip and slcan line discipline could lead to a
u
OSV
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities
osv·2020-07-06·CVSS 4.1
CVE-2019-16089 [MEDIUM] linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of service
(system crash). (CVE-2019-16089)
It was discovered that the btrfs file system implementation in the Linux
kernel did not properly validate file system metadata in some situations.
An attacker could use this to construct a malicious btrfs image that, when
mounted, could cause a denial of service (system crash). (CVE-2019-19036,
CVE-2019-19318, CVE-2019-19813, CVE-2019-19816)
I
OSV
CVE-2019-19462: relay_open in kernel/relay
osv·2019-11-30·CVSS 5.5
CVE-2019-19462 [MEDIUM] CVE-2019-19462: relay_open in kernel/relay
relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.
Ubuntu
linux kernel vulnerabilities
vendor_ubuntu·2020-07-31·CVSS 4.1
CVE-2019-16089 [MEDIUM] linux kernel vulnerabilities
Title: linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of
service (system crash). (CVE-2019-16089)
It was discovered that the kernel->user space relay implementation in the
Linux kernel did not properly check return values in some situations. A
local attacker could possibly use this to cause a denial of service (system
crash). (CVE-2019-19462)
Chuhong Yuan discovered that go7007 USB audio device driver in the Linux
kernel did not properly deallocate memory in some failure conditions. A
physically proximate attacker could use this to caus
Ubuntu
Kernel Live Patch Security Notice
vendor_ubuntu·2020-07-27·CVSS 5.5
CVE-2020-14416 [MEDIUM] Kernel Live Patch Security Notice
Title: Kernel Live Patch Security Notice
Summary: Several security issues were fixed in the kernel.
Relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local
users to cause a denial of service (such as relay blockage) by triggering a
NULL alloc_percpu result. (CVE-2019-19462)
Fan Yang discovered that the mremap implementation in the Linux kernel did
not properly handle DAX Huge Pages. A local attacker with access to DAX
storage could use this to gain administrative privileges. (CVE-2020-10757)
It was discovered that the DesignWare SPI controller driver in the Linux
kernel contained a race condition. A local attacker could possibly use this
to cause a denial of service (system crash). (CVE-2020-12769)
In the Linux kernel before 5.4.16, a race condition in tty->disc_da
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2020-07-27·CVSS 4.1
CVE-2019-12380 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of
service (system crash). (CVE-2019-16089)
It was discovered that the btrfs file system implementation in the Linux
kernel did not properly validate file system metadata in some situations.
An attacker could use this to construct a malicious btrfs image that, when
mounted, could cause a denial of service (system crash). (CVE-2019-19036)
It was discovered that the kernel->user space relay implementation in the
Linux kernel did not properly check return values in some situations. A
lo
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2020-07-27·CVSS 4.1
CVE-2020-15780 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of
service (system crash). (CVE-2019-16089)
It was discovered that the kernel->user space relay implementation in the
Linux kernel did not properly check return values in some situations. A
local attacker could possibly use this to cause a denial of service (system
crash). (CVE-2019-19462)
Mauricio Faria de Oliveira discovered that the aufs implementation in the
Linux kernel improperly managed inode reference counts in the
vfsub_dentry_open() method. A local attacker could use this v
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2020-07-06·CVSS 4.1
CVE-2019-19318 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
It was discovered that the network block device (nbd) implementation in the
Linux kernel did not properly check for error conditions in some
situations. An attacker could possibly use this to cause a denial of service
(system crash). (CVE-2019-16089)
It was discovered that the btrfs file system implementation in the Linux
kernel did not properly validate file system metadata in some situations.
An attacker could use this to construct a malicious btrfs image that, when
mounted, could cause a denial of service (system crash). (CVE-2019-19036,
CVE-2019-19318, CVE-2019-19813, CVE-2019-19816)
It was discovered that the btrfs implementation in the Linux kernel did not
properly detect that a b
Red Hat
kernel: NULL pointer dereference in relay_open in kernel/relay.c
vendor_redhat·2019-11-29·CVSS 5.5
CVE-2019-19462 [MEDIUM] CWE-476 kernel: NULL pointer dereference in relay_open in kernel/relay.c
kernel: NULL pointer dereference in relay_open in kernel/relay.c
relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.
A NULL pointer dereference flaw may occur in the Linux kernel’s relay_open in kernel/relay.c. if the alloc_percpu() function is not validated in time of failure and used as a valid address for access. An attacker could use this flaw to cause a denial of service.
Mitigation: Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Package: kernel (Red Hat Enterprise Linux 5)
Debian
CVE-2019-19462: linux - relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local user...
vendor_debian·2019·CVSS 5.5
CVE-2019-19462 [MEDIUM] CVE-2019-19462: linux - relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local user...
relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.
Scope: local
bookworm: resolved (fixed in 5.6.14-2)
bullseye: resolved (fixed in 5.6.14-2)
forky: resolved (fixed in 5.6.14-2)
sid: resolved (fixed in 5.6.14-2)
trixie: resolved (fixed in 5.6.14-2)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2019-19462 kernel: NULL pointer dereference in relay_open in kernel/relay.c [fedora-all]
bugzilla·2019-12-10·CVSS 5.5
CVE-2019-19462 [MEDIUM] CVE-2019-19462 kernel: NULL pointer dereference in relay_open in kernel/relay.c [fedora-all]
CVE-2019-19462 kernel: NULL pointer dereference in relay_open in kernel/relay.c [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple sup
Bugzilla
CVE-2019-19462 kernel: NULL pointer dereference in relay_open in kernel/relay.c
bugzilla·2019-12-10·CVSS 5.5
CVE-2019-19462 [MEDIUM] CVE-2019-19462 kernel: NULL pointer dereference in relay_open in kernel/relay.c
CVE-2019-19462 kernel: NULL pointer dereference in relay_open in kernel/relay.c
relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.
Reference and upstream commit:
https://lore.kernel.org/lkml/[email protected]/
Discussion:
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1781840]
---
Mitigation:
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
---
An upstream commit v2:
https://lore.kernel.org/lkml/[email protected]
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.htmlhttps://lists.debian.org/debian-lts-announce/2020/06/msg00012.htmlhttps://lore.kernel.org/lkml/20191129013745.7168-1-dja%40axtens.net/https://security.netapp.com/advisory/ntap-20210129-0004/https://syzkaller-ppc64.appspot.com/bug?id=1c09906c83a8ea811a9e318c2a4f8e243becc6f8https://syzkaller-ppc64.appspot.com/bug?id=b05b4d005191cc375cdf848c3d4d980308d50531https://syzkaller.appspot.com/bug?id=e4265490d26d6c01cd9bc79dc915ef0a1bf15046https://syzkaller.appspot.com/bug?id=f4d1cb4330bd3ddf4a628332b4285407b2eedd7bhttps://usn.ubuntu.com/4414-1/https://usn.ubuntu.com/4425-1/https://usn.ubuntu.com/4439-1/https://usn.ubuntu.com/4440-1/https://www.debian.org/security/2020/dsa-4698https://www.debian.org/security/2020/dsa-4699http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.htmlhttps://lists.debian.org/debian-lts-announce/2020/06/msg00012.htmlhttps://lore.kernel.org/lkml/20191129013745.7168-1-dja%40axtens.net/https://security.netapp.com/advisory/ntap-20210129-0004/https://syzkaller-ppc64.appspot.com/bug?id=1c09906c83a8ea811a9e318c2a4f8e243becc6f8https://syzkaller-ppc64.appspot.com/bug?id=b05b4d005191cc375cdf848c3d4d980308d50531https://syzkaller.appspot.com/bug?id=e4265490d26d6c01cd9bc79dc915ef0a1bf15046https://syzkaller.appspot.com/bug?id=f4d1cb4330bd3ddf4a628332b4285407b2eedd7bhttps://usn.ubuntu.com/4414-1/https://usn.ubuntu.com/4425-1/https://usn.ubuntu.com/4439-1/https://usn.ubuntu.com/4440-1/https://www.debian.org/security/2020/dsa-4698https://www.debian.org/security/2020/dsa-4699
2019-11-30
Published