CVE-2019-9445 — Out-of-bounds Read in Linux
Severity
4.4MEDIUMNVD
OSV5.5OSV4.7
EPSS
0.1%
top 81.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedSep 6
Latest updateMay 24
Description
In the Android kernel in F2FS driver there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.8 | Impact: 3.6
Affected Packages3 packages
Also affects: Debian Linux 9.0, Ubuntu Linux 14.04, 16.04, 18.04
🔴Vulnerability Details
4GHSA▶
GHSA-5jrf-fwh5-6qfr: In the Android kernel in F2FS driver there is a possible out of bounds read due to a missing bounds check↗2022-05-24
OSV▶
linux, linux-aws, linux-kvm, linux-lts-xenial, linux-raspi2, linux-snapdragon vulnerabilities↗2020-09-24
OSV▶
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities↗2020-09-23
OSV▶
CVE-2019-9445: In the Android kernel in F2FS driver there is a possible out of bounds read due to a missing bounds check↗2019-09-06