vulnerability

Red Hat OpenShift: CVE-2019-11833: kernel: fs/ext4/extents.c leads to information disclosure

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:L/Au:N/C:P/I:N/A:N)	May 15, 2019	Dec 29, 2020	Aug 11, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:N/A:N)

Published

May 15, 2019

Added

Dec 29, 2020

Modified

Aug 11, 2025

Description

fs/ext4/extents.c in the Linux kernel through 5.1.2 does not zero out the unused memory region in the extent tree block, which might allow local users to obtain sensitive information by reading uninitialized data in the filesystem.

Solution

linuxrpm-upgrade-redhat-coreos

References

CVE-2019-11833
https://attackerkb.com/topics/CVE-2019-11833
CWE-908
REDHAT-RHSA-2019:2029
REDHAT-RHSA-2019:2043
REDHAT-RHSA-2019:3309
REDHAT-RHSA-2019:3517

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today