CVE-2019-15666

Published: Aug 27, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in __xfrm_policy_unlink, which will cause denial of service, because verify_newpolicy_info in net/xfrm/xfrm_user.c mishandles directory validation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b805d78d300bcf2c83d6df7da0c818b0fee41427

x_refsource_MISC

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.19

x_refsource_MISC

[debian-lts-announce] 20190914 [SECURITY] [DLA 1919-1] linux-4.9 security update

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20190915 [SECURITY] [DLA 1919-2] linux-4.9 security update

mailing-list

x_refsource_MLIST

openSUSE-SU-2019:2173

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2019:2181

vendor-advisory

x_refsource_SUSE

https://security.netapp.com/advisory/ntap-20191004-0001/

x_refsource_CONFIRM

https://support.f5.com/csp/article/K53420251?utm_source=f5support&amp%3Butm_medium=RSS

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-15666

Description

Affected Products

References