CVE-2019-19053

Home/CVE/A memory leak in the rpmsg_eptdev_write_iter() function in drivers/rpmsg/rpmsg_char.c in the Linux kernel through 5.3.11

CVE

A memory leak in the rpmsg_eptdev_write_iter() function in drivers/rpmsg/rpmsg_char.c in the Linux kernel through 5.3.11

A memory leak in the rpmsg_eptdev_write_iter() function in drivers/rpmsg/rpmsg_char.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering copy_from_iter_full() failures, aka CID-bbe692e349e2.

HIGH · CVSS 7.5 EPSS 0.00504

Schedule remediation

CVSS base score ≥ 7.0

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-401Missing Release of Memory after Effective Lifetime

▤

Affected Products & Versions

linux kernel>= 4.20 and < 5.4.12
canonical ubuntu linuxall versions
netapp active iq unified managerall versions
netapp aff baseboard management controllerall versions
netapp cloud backupall versions
netapp data availability servicesall versions
netapp e-series santricity os controllerall versions
netapp fas\/aff baseboard management controllerall versions
Show all 15 affected productsnetapp hci baseboard management controllerall versions
netapp solidfire\, enterprise sds \& hci storage nodeall versions
netapp solidfire \& hci management nodeall versions
netapp steelstore cloud integrated storageall versions
broadcom brocade fabric operating system firmwareall versions
netapp solidfire baseboard management controller firmwareall versions
netapp hci compute node firmwareall versions