CVE-2019-25160
Published: Feb 26, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: netlabel: fix out-of-bounds memory accesses There are two array out-of-bounds memory accesses, one in cipso_v4_map_lvl_valid(), the other in netlbl_bitmap_walk(). Both errors are embarassingly simple, and the fixes are straightforward. As a FYI for anyone backporting this patch to kernels prior to v4.8, you'll want to apply the netlbl_bitmap_walk() patch to cipso_v4_bitmap_walk() as netlbl_bitmap_walk() doesn't exist before Linux v4.8.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 446fda4f26822b2d42ab3396aafcedf38a9ff2b6 - < 97bc3683c24999ee621d847c9348c75d2fe86272affected 446fda4f26822b2d42ab3396aafcedf38a9ff2b6 - < c61d01faa5550e06794dcf86125ccd325bfad950affected 446fda4f26822b2d42ab3396aafcedf38a9ff2b6 - < dc18101f95fa6e815f426316b8b9a5cee28a334eaffected 446fda4f26822b2d42ab3396aafcedf38a9ff2b6 - < 1c973f9c7cc2b3caae93192fdc8ecb3f0b4ac000affected 446fda4f26822b2d42ab3396aafcedf38a9ff2b6 - < fcfe700acdc1c72eab231300e82b962bac2b2b2c+3 more versions |
Linux | Linux | affected 2.6.19unaffected 0 - < 2.6.19unaffected 3.16.66 - <= 3.16.*unaffected 3.18.137 - <= 3.18.*unaffected 4.4.177 - <= 4.4.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now