QwikSec

Security Database

CVE

CWE

Training

CVE-2019-12380

Published: May 28, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

**DISPUTED** An issue was discovered in the efi subsystem in the Linux kernel through 5.1.5. phys_efi_set_virtual_address_map in arch/x86/platform/efi/efi.c and efi_call_phys_prolog in arch/x86/platform/efi/efi_64.c mishandle memory allocation failures. NOTE: This id is disputed as not being an issue because “All the code touched by the referenced commit runs only at boot, before any user processes are started. Therefore, there is no possibility for an unprivileged user to control it.”.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=4e78921ba4dd0aca1cc89168f45039add4183f8e

x_refsource_MISC

vdb-entry

x_refsource_BID

FEDORA-2019-7ec378191e

vendor-advisory

x_refsource_FEDORA

FEDORA-2019-f40bd7826f

vendor-advisory

x_refsource_FEDORA

openSUSE-SU-2019:1570

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2019:1571

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2019:1579

vendor-advisory

x_refsource_SUSE

https://security.netapp.com/advisory/ntap-20190710-0002/

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.