CVE-2019-19061

A memory leak in the adis_update_scan_mode_burst() function in drivers/iio/imu/adis_buffer.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-9c0530e898f3.

Published: Nov 18, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-19061
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-401

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	4.5	4.9.262
linux / linux_kernel	4.15	4.19.137
linux / linux_kernel	4.20	5.3.9
linux / linux_kernel	4.10	4.14.192
linux / linux_kernel	3.9	4.4.262
canonical / ubuntu_linux	18.04	18.04.x
canonical / ubuntu_linux	14.04	14.04.x
canonical / ubuntu_linux	19.10	19.10.x
canonical / ubuntu_linux	16.04	16.04.x
netapp / e-series_santricity_os_controller	11.0	11.0.x
netapp / e-series_santricity_os_controller	11.0.0	11.0.0.x
netapp / e-series_santricity_os_controller	11.20	11.20.x
netapp / e-series_santricity_os_controller	11.25	11.25.x
netapp / e-series_santricity_os_controller	11.30	11.30.x
netapp / e-series_santricity_os_controller	11.30.5r3	11.30.5r3.x
netapp / e-series_santricity_os_controller	11.40	11.40.x
netapp / e-series_santricity_os_controller	11.40.3r2	11.40.3r2.x
netapp / e-series_santricity_os_controller	11.40.5	11.40.5.x
netapp / e-series_santricity_os_controller	11.50.1	11.50.1.x
netapp / e-series_santricity_os_controller	11.50.2	11.50.2.x
netapp / e-series_santricity_os_controller	11.50.2-p1	11.50.2-p1.x
netapp / e-series_santricity_os_controller	11.60	11.60.x
netapp / e-series_santricity_os_controller	11.60.0	11.60.0.x
netapp / e-series_santricity_os_controller	11.60.1	11.60.1.x
netapp / e-series_santricity_os_controller	11.60.3	11.60.3.x
netapp / e-series_santricity_os_controller	11.70.1	11.70.1.x
netapp / e-series_santricity_os_controller	11.70.2	11.70.2.x
netapp / hci_baseboard_management_controller	h610s	h610s.x

Vulnerability Database

289,689

CVE-2019-19061