QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2019-9213

Back to search

CVE-2019-9213

Published: Mar 5, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task.

VendorProductVersions

n/a

n/a

affected
n/a

References

46502
exploit
x_refsource_EXPLOIT-DB
107296
vdb-entry
x_refsource_BID
openSUSE-SU-2019:1085
vendor-advisory
x_refsource_SUSE
USN-3932-1
vendor-advisory
x_refsource_UBUNTU
USN-3932-2
vendor-advisory
x_refsource_UBUNTU
USN-3930-1
vendor-advisory
x_refsource_UBUNTU
USN-3931-1
vendor-advisory
x_refsource_UBUNTU
USN-3933-2
vendor-advisory
x_refsource_UBUNTU
USN-3931-2
vendor-advisory
x_refsource_UBUNTU
USN-3930-2
vendor-advisory
x_refsource_UBUNTU
USN-3933-1
vendor-advisory
x_refsource_UBUNTU
openSUSE-SU-2019:1193
vendor-advisory
x_refsource_SUSE
RHSA-2019:0831
vendor-advisory
x_refsource_REDHAT
RHSA-2019:1479
vendor-advisory
x_refsource_REDHAT
RHSA-2019:1480
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now