CVE-2019-3900
CVSS v3.1
7.7 (High)
CVSS v2.0
6.8 (Medium)
EPSS
0.10 % (42th)
Affected Products
15
Advisories
67
NVD Status
Analyzed
An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario.
Weaknesses
- CWE-835
- Loop with Unreachable Exit Condition ('Infinite Loop')
- CVE Status
- PUBLISHED
- NVD Status
- Analyzed
- CNA
- Red Hat, Inc.
- Published Date
-
2019-04-25 15:29:00
(5 years ago) - Updated Date
-
2024-04-26 16:08:45
(4 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Configuration #6
|
Configuration #7
AND |
|
---|
Configuration #8
|
Configuration #9
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...