1. Home
  2. Vulnerabilities
  3. CVE-2019-11884

CVE-2019-11884

CVSS v3.1 3.3 (Low)
33% Progress
CVSS v2.0 2.1 (Low)
21% Progress
EPSS 0.04 % (11th)
0.04% Progress
Affected Products 12
Advisories 67
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.

Weaknesses
CWE-NVD-noinfo
Related CVEs
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2019-05-10 22:29:00
(5 years ago)
Updated Date
2023-11-07 03:03:17
(10 months ago)

Affected Products

Canonical

Debian

Fedoraproject

Linux

Opensuse

Redhat

Configuration #1

    CPE23 From Up To
  Linux Kernel prior 5.0.15 version cpe:2.3:o:linux:linux_kernel < 5.0.15

Configuration #2

    CPE23 From Up To
  Fedoraproject Fedora 28 cpe:2.3:o:fedoraproject:fedora:28
  Fedoraproject Fedora 29 cpe:2.3:o:fedoraproject:fedora:29
  Fedoraproject Fedora 30 cpe:2.3:o:fedoraproject:fedora:30

Configuration #3

    CPE23 From Up To
  Debian Linux 8.0 cpe:2.3:o:debian:debian_linux:8.0
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0

Configuration #4

    CPE23 From Up To
  Canonical Ubuntu Linux 16.04 cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm
  Canonical Ubuntu Linux 18.04 cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts
  Canonical Ubuntu Linux 19.04 cpe:2.3:o:canonical:ubuntu_linux:19.04

Configuration #5

    CPE23 From Up To
  Redhat Enterprise Linux 8.0 cpe:2.3:o:redhat:enterprise_linux:8.0
  Redhat Enterprise Linux Eus 8.1 cpe:2.3:o:redhat:enterprise_linux_eus:8.1
  Redhat Enterprise Linux Eus 8.2 cpe:2.3:o:redhat:enterprise_linux_eus:8.2
  Redhat Enterprise Linux Eus 8.4 cpe:2.3:o:redhat:enterprise_linux_eus:8.4
  Redhat Enterprise Linux Eus 8.6 cpe:2.3:o:redhat:enterprise_linux_eus:8.6
  Redhat Enterprise Linux for Real Time 8.0 cpe:2.3:o:redhat:enterprise_linux_for_real_time:8.0
  Redhat Enterprise Linux for Real Time For Nfv Tus 8.2 cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2
  Redhat Enterprise Linux for Real Time For Nfv Tus 8.4 cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.4
  Redhat Enterprise Linux for Real Time For Nfv Tus 8.6 cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.6
  Redhat Enterprise Linux for Real Time Tus 8.2 cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2
  Redhat Enterprise Linux for Real Time Tus 8.4 cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.4
  Redhat Enterprise Linux for Real Time Tus 8.6 cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.6
  Redhat Enterprise Linux Server Aus 8.2 cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2
  Redhat Enterprise Linux Server Aus 8.4 cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4
  Redhat Enterprise Linux Server Aus 8.6 cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6
  Redhat Enterprise Linux Server Tus 8.2 cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2
  Redhat Enterprise Linux Server Tus 8.4 cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4
  Redhat Enterprise Linux Server Tus 8.6 cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6

Configuration #6

    CPE23 From Up To
  Opensuse Leap 15.0 cpe:2.3:o:opensuse:leap:15.0
  Opensuse Leap 15.1 cpe:2.3:o:opensuse:leap:15.1
  Opensuse Leap 42.3 cpe:2.3:o:opensuse:leap:42.3