vulnerability
Oracle Linux: CVE-2019-10124: ELSA-2019-4643: Unbreakable Enterprise kernel security update (IMPORTANT) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 1 | (AV:A/AC:L/Au:S/C:N/I:N/A:N) | Mar 5, 2019 | May 16, 2019 | Jan 23, 2025 |
Severity
1
CVSS
(AV:A/AC:L/Au:S/C:N/I:N/A:N)
Published
Mar 5, 2019
Added
May 16, 2019
Modified
Jan 23, 2025
Description
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none
A bug was discovered in the hwpoison implementation in mm/memory-failure.c in the Linux kernel. When soft_offline_in_use_page() is run for a thp tail page after pmd is split, a privileged attacker can cause a denial of service (DoS). Privileged access is required for an attacker to trigger this bug, thus, we believe this bug is not a security flaw.
A bug was discovered in the hwpoison implementation in mm/memory-failure.c in the Linux kernel. When soft_offline_in_use_page() is run for a thp tail page after pmd is split, a privileged attacker can cause a denial of service (DoS). Privileged access is required for an attacker to trigger this bug, thus, we believe this bug is not a security flaw.
Solution
oracle-linux-upgrade-kernel-uek
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.