vulnerability
SUSE: CVE-2019-19767: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Dec 12, 2019 | Jan 16, 2020 | Feb 4, 2022 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Dec 12, 2019
Added
Jan 16, 2020
Modified
Feb 4, 2022
Description
The Linux kernel before 5.4.2 mishandles ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163.
Solution(s)
suse-upgrade-kernel-defaultsuse-upgrade-kernel-default-extrasuse-upgrade-kernel-docssuse-upgrade-kernel-obs-build
References
- SUSE-SUSE-SU-2019:3381-1
- SUSE-SUSE-SU-2020:0093-1
- SUSE-SUSE-SU-2020:0511-1
- SUSE-SUSE-SU-2020:0559-1
- SUSE-SUSE-SU-2020:0560-1
- SUSE-SUSE-SU-2020:0580-1
- SUSE-SUSE-SU-2020:0584-1
- SUSE-SUSE-SU-2020:0599-1
- SUSE-SUSE-SU-2020:0613-1
- SUSE-SUSE-SU-2020:1255-1
- SUSE-SUSE-SU-2020:1275-1
- UBUNTU-USN-4258-1
- UBUNTU-USN-4284-1
- UBUNTU-USN-4287-1
- UBUNTU-USN-4287-2
- NVD-CVE-2019-19767
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.