Published: 03/06/2019 Updated: 07/11/2023

CVSS v2 Base Score: 4.7 | Impact Score: 6.9 | Exploitability Score: 3.4

CVSS v3 Base Score: 4.1 | Impact Score: 3.6 | Exploitability Score: 0.5

VMScore: 419

Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C

An issue exists in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel up to and including 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an malicious user to cause a denial of service (NULL pointer dereference and system crash).

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
redhat enterprise linux 7.0
canonical ubuntu linux 16.04
canonical ubuntu linux 18.04
opensuse leap 15.0
canonical ubuntu linux 19.04
fedoraproject fedora 29
fedoraproject fedora 30
canonical ubuntu linux 14.04
redhat enterprise linux 8.0
opensuse leap 15.1

Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...

Synopsis Important: kernel-alt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-alt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System ...

Synopsis Moderate: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for kernel is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Syst ...

Several security issues were fixed in the Linux kernel ...

Impact: Moderate Public Date: 2019-06-03 Bugzilla: 1718176: CVE-2019-12614 kernel: null pointer derefere ...

CWE-476 https://lkml.org/lkml/2019/6/3/526 https://git.kernel.org/pub/scm/linux/kernel/git/powerpc/linux.git/commit/?id=efa9ace68e487ddd29c2b4d6dd23242158f1f607 http://www.securityfocus.com/bid/108550 https://security.netapp.com/advisory/ntap-20190710-0002/http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00025.html https://usn.ubuntu.com/4094-1/https://usn.ubuntu.com/4095-2/https://usn.ubuntu.com/4095-1/https://usn.ubuntu.com/4093-1/http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html https://support.f5.com/csp/article/K54337315 http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html https://seclists.org/bugtraq/2020/Jan/10 http://packetstormsecurity.com/files/155890/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDURACJVGIBIYBSGDZJTRDPX46H5WPZW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OBJHGQXA4PQ5EOGCOXEH3KFDNVZ2I4X7/https://support.f5.com/csp/article/K54337315?utm_source=f5support&%3Butm_medium=RSS https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2020:4060 https://usn.ubuntu.com/4095-2/

CVE-2019-12614

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect