Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2019-19073

Published: 18/11/2019 Updated: 07/11/2023
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 4 | Impact Score: 1.4 | Exploitability Score: 2.5
VMScore: 188
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Linux

Vulnerability Summary

Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel up to and including 5.3.11 allow malicious users to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, and the htc_connect_service() function, aka CID-853acf7caf10.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

fedoraproject fedora 30

opensuse leap 15.1

fedoraproject fedora 31

Vendor Advisories

Red Hat: Important: kernel security, bug fix, and enhancement update
Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...
Amazon Linux 2: ALAS2-2020-1480
A memory leak in the adis_update_scan_mode_burst() function in drivers/iio/imu/adis_bufferc in the Linux kernel before 539 allows attackers to cause a denial of service (memory consumption), aka CID-9c0530e898f3 (CVE-2019-19061) A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmic in the Linux kernel through 53 ...

References

CWE-401https://github.com/torvalds/linux/commit/853acf7caf10b828102d92d05b5c101666a6142bhttps://security.netapp.com/advisory/ntap-20191205-0001/http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.htmlhttps://usn.ubuntu.com/4527-1/https://usn.ubuntu.com/4526-1/https://lists.debian.org/debian-lts-announce/2020/10/msg00034.htmlhttps://lists.debian.org/debian-lts-announce/2020/10/msg00032.htmlhttps://www.oracle.com/security-alerts/cpuApr2021.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3PSDE6PTOTVBK2YTKB2TFQP2SUBVSNF/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PY7LJMSPAGRIKABJPDKQDTXYW3L5RX2T/https://access.redhat.com/errata/RHSA-2020:1769https://nvd.nist.govhttps://alas.aws.amazon.com/AL2/ALAS-2020-1480.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcodedarbitrary codeCVE-2024-2404CVE-2024-21111CVE-2024-28627CVE-2024-4073information disclosureCVE-2024-32780CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook