1. Home
  2. Vulnerabilities
  3. CVE-2019-12380

CVE-2019-12380

CVSS v3.0 5.5 (Medium)
55% Progress
CVSS v2.0 2.1 (Low)
21% Progress
EPSS 0.07 % (33th)
0.07% Progress
Affected Products 1
Advisories 41
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

DISPUTED An issue was discovered in the efi subsystem in the Linux kernel through 5.1.5. phys_efi_set_virtual_address_map in arch/x86/platform/efi/efi.c and efi_call_phys_prolog in arch/x86/platform/efi/efi_64.c mishandle memory allocation failures. NOTE: This id is disputed as not being an issue because “All the code touched by the referenced commit runs only at boot, before any user processes are started. Therefore, there is no possibility for an unprivileged user to control it.”.

Weaknesses
CWE-388
7PK - Errors
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2019-05-28 03:29:00
(5 years ago)
Updated Date
2023-11-07 03:03:32
(10 months ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel 5.1.5 and prior versions cpe:2.3:o:linux:linux_kernel <= 5.1.5