vulnerability
Ubuntu: USN-4161-1 (CVE-2019-18198): Linux kernel vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Oct 18, 2019 | Oct 22, 2019 | Mar 22, 2023 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Oct 18, 2019
Added
Oct 22, 2019
Modified
Mar 22, 2023
Description
In the Linux kernel before 5.3.4, a reference count usage error in the fib6_rule_suppress() function in the fib6 suppression feature of net/ipv6/fib6_rules.c, when handling the FIB_LOOKUP_NOREF flag, can be exploited by a local attacker to corrupt memory, aka CID-ca7a03c41753.
Solution(s)
ubuntu-upgrade-linux-image-5-3-0-1004-awsubuntu-upgrade-linux-image-5-3-0-1004-azureubuntu-upgrade-linux-image-5-3-0-1004-kvmubuntu-upgrade-linux-image-5-3-0-1005-gcpubuntu-upgrade-linux-image-5-3-0-1008-raspi2ubuntu-upgrade-linux-image-5-3-0-19-genericubuntu-upgrade-linux-image-5-3-0-19-generic-lpaeubuntu-upgrade-linux-image-5-3-0-19-lowlatencyubuntu-upgrade-linux-image-5-3-0-19-snapdragonubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-virtual
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.