QwikSec

Security Database

CVE

CWE

Training

CVE-2019-9162

Published: Feb 25, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 length checks (aka an array index error), making out-of-bounds read and write operations possible, leading to an OOPS or local privilege escalation. This affects snmp_version and snmp_helper.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.25

x_refsource_MISC

exploit

x_refsource_EXPLOIT-DB

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c4c07b4d6fa1f11880eab8e076d3d060ef3f55fc

x_refsource_MISC

https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20.12

x_refsource_MISC

vdb-entry

x_refsource_BID

https://github.com/torvalds/linux/commit/c4c07b4d6fa1f11880eab8e076d3d060ef3f55fc

x_refsource_MISC

https://bugs.chromium.org/p/project-zero/issues/detail?id=1776

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20190327-0002/

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

https://support.f5.com/csp/article/K31864522

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.