cbcvebase.
CVE-2019-3900
published 2019-04-25

CVE-2019-3900: An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx()…

high7.7CVSS 3.1
AVNACLPRLUINSCCNINAH
An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario.

Affected

31 ranges· showing 25
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debiandebian_linux
debianlinux< linux 5.2.6-1 (bookworm)linux 5.2.6-1 (bookworm)
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora
linuxlinux_kernel>= 0 < 5.2.6-15.2.6-1
linuxlinux_kernel>= 0 < 5.2.6-15.2.6-1
linuxlinux_kernel>= 0 < 5.2.6-15.2.6-1
linuxlinux_kernel>= 0 < 5.2.6-15.2.6-1
linuxlinux_kernel>= 0 < 4.4.0-161.1894.4.0-161.189
linuxlinux_kernel>= 0 < 4.15.0-62.694.15.0-62.69
linuxlinux_kernel>= 0 < 4.15.0-60.674.15.0-60.67
linuxlinux_kernel>= 2.6.34 < 3.16.723.16.72
linuxlinux_kernel>= 3.17 < 4.4.1914.4.191
linuxlinux_kernel>= 4.10 < 4.14.1334.14.133
linuxlinux_kernel>= 4.15 < 4.19.644.19.64
linuxlinux_kernel>= 4.20 < 5.25.2
linuxlinux_kernel>= 4.5 < 4.9.1904.9.190
netappactive_iq_unified_manager_for_vmware_vsphere>= 9.5
netappstorage_replication_adapter_for_clustered_data_ontap_for_vmware_vsphere>= 7.2

CVSS provenance

nvdv3.17.7HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
osv7.8HIGH