QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2019-5489

Back to search

CVE-2019-5489

Published: Jan 7, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attackers to observe page cache access patterns of other processes on the same system, potentially allowing sniffing of secret information. (Fixing this affects the output of the fincore program.) Limited remote exploitation may be possible, as demonstrated by latency differences in accessing public files from an Apache HTTP Server.

VendorProductVersions

n/a

n/a

affected
n/a

References

106478
vdb-entry
x_refsource_BID
openSUSE-SU-2019:1479
vendor-advisory
x_refsource_SUSE
DSA-4465
vendor-advisory
x_refsource_DEBIAN
openSUSE-SU-2019:1570
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2019:1579
vendor-advisory
x_refsource_SUSE
RHSA-2019:2043
vendor-advisory
x_refsource_REDHAT
RHSA-2019:2029
vendor-advisory
x_refsource_REDHAT
RHSA-2019:2473
vendor-advisory
x_refsource_REDHAT
RHSA-2019:2808
vendor-advisory
x_refsource_REDHAT
RHSA-2019:2837
vendor-advisory
x_refsource_REDHAT
RHSA-2019:2809
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3309
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3517
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3967
vendor-advisory
x_refsource_REDHAT
RHSA-2019:4058
vendor-advisory
x_refsource_REDHAT
RHSA-2019:4057
vendor-advisory
x_refsource_REDHAT
RHSA-2019:4056
vendor-advisory
x_refsource_REDHAT
RHSA-2019:4159
vendor-advisory
x_refsource_REDHAT
RHSA-2019:4164
vendor-advisory
x_refsource_REDHAT
RHSA-2019:4255
vendor-advisory
x_refsource_REDHAT
RHSA-2020:0204
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now