QwikSec

Security Database

CVE

CWE

Training

CVE-2019-19067

Published: Nov 18, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c in the Linux kernel before 5.3.8 allow attackers to cause a denial of service (memory consumption) by triggering mfd_add_hotplug_devices() or pm_genpd_add_device() failures, aka CID-57be09c6e874. NOTE: third parties dispute the relevance of this because the attacker must already have privileges for module loading

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.8

x_refsource_MISC

https://github.com/torvalds/linux/commit/57be09c6e8747bf48704136d9e3f92bfb93f5725

x_refsource_MISC

https://bugzilla.suse.com/show_bug.cgi?id=1157180

x_refsource_MISC

vendor-advisory

x_refsource_UBUNTU

openSUSE-SU-2019:2675

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2019-19067 - Security Vulnerability | QwikSec