CVE-2019-19076

CVSS v3.1 5.9 (Medium)

CVSS v2.0 7.1 (High)

EPSS 0.80 % (82^th)

Affected Products 3

Advisories 1

NVD Status Modified

A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption), aka CID-78beef629fd9. NOTE: This has been argued as not a valid vulnerability. The upstream commit 78beef629fd9 was reverted

Weaknesses

CWE-401: Missing Release of Memory after Effective Lifetime

CVE Status: PUBLISHED
NVD Status: Modified
CNA: MITRE
Published Date: 2019-11-18 06:15:13
(4 years ago)
Updated Date: 2024-08-05 02:15:59
(6 weeks ago)

Affected Products

Configuration #1

		CPE23	From	Up To
	Linux Kernel prior 5.3.6 version	cpe:2.3:o:linux:linux_kernel		< 5.3.6

Configuration #2

		CPE23	From	Up To
	Canonical Ubuntu Linux 18.04	cpe:2.3:o:canonical:ubuntu_linux:18.04:::*:lts
	Canonical Ubuntu Linux 19.04	cpe:2.3:o:canonical:ubuntu_linux:19.04
	Redhat Enterprise Linux 8.0	cpe:2.3:o:redhat:enterprise_linux:8.0

Weaknesses

Affected Products

Canonical

Linux

Redhat

Configuration #1

Configuration #2