cbcvebase.
CVE-2019-9213
published 2019-03-05

CVE-2019-9213: In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit…

PriorityP334medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EXPLOIT
EPSS
5.67%
92.0th percentile
In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task.

Affected

21 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debianlinux< linux 4.19.28-1 (bookworm)linux 4.19.28-1 (bookworm)
linuxlinux_kernel>= 0 < 4.19.28-14.19.28-1
linuxlinux_kernel>= 0 < 4.19.28-14.19.28-1
linuxlinux_kernel>= 0 < 4.19.28-14.19.28-1
linuxlinux_kernel>= 0 < 4.19.28-14.19.28-1
linuxlinux_kernel>= 0 < 3.13.0-168.2183.13.0-168.218
linuxlinux_kernel>= 0 < 4.4.0-145.1714.4.0-145.171
linuxlinux_kernel>= 0 < 4.15.0-47.504.15.0-47.50
linuxlinux_kernel>= 4.14 < 4.14.1054.14.105
linuxlinux_kernel>= 4.19 < 4.19.274.19.27
linuxlinux_kernel>= 4.20 < 4.20.144.20.14
linuxlinux_kernel>= 4.9 < 4.9.1624.9.162
opensuseleap
opensuseleap
redhatenterprise_linux
redhatenterprise_linux

CVSS provenance

nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvdv2.04.9MEDIUMAV:L/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH
vendor_ubuntu7.8HIGH
vendor_debian5.5MEDIUM
vendor_redhat5.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.