vulnerability

Ubuntu: (Multiple Advisories) (CVE-2019-19449): Linux kernel (Azure) vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Dec 8, 2019	Oct 22, 2021	Aug 18, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Dec 8, 2019

Added

Oct 22, 2021

Modified

Aug 18, 2025

Description

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fs_build_segment_manager in fs/f2fs/segment.c, related to init_min_max_mtime in fs/f2fs/segment.c (because the second argument to get_seg_entry is not validated).

Solutions

ubuntu-upgrade-linux-image-4-15-0-1030-dell300xubuntu-upgrade-linux-image-4-15-0-1083-oracleubuntu-upgrade-linux-image-4-15-0-1098-raspi2ubuntu-upgrade-linux-image-4-15-0-1102-kvmubuntu-upgrade-linux-image-4-15-0-1111-gcpubuntu-upgrade-linux-image-4-15-0-1115-awsubuntu-upgrade-linux-image-4-15-0-1115-snapdragonubuntu-upgrade-linux-image-4-15-0-1126-azureubuntu-upgrade-linux-image-4-15-0-162-genericubuntu-upgrade-linux-image-4-15-0-162-generic-lpaeubuntu-upgrade-linux-image-4-15-0-162-lowlatencyubuntu-upgrade-linux-image-4-4-0-1102-awsubuntu-upgrade-linux-image-4-4-0-1103-kvmubuntu-upgrade-linux-image-4-4-0-1138-awsubuntu-upgrade-linux-image-4-4-0-222-genericubuntu-upgrade-linux-image-4-4-0-222-lowlatencyubuntu-upgrade-linux-image-5-4-0-1007-ibmubuntu-upgrade-linux-image-5-4-0-1021-bluefieldubuntu-upgrade-linux-image-5-4-0-1026-gkeopubuntu-upgrade-linux-image-5-4-0-1046-raspiubuntu-upgrade-linux-image-5-4-0-1049-kvmubuntu-upgrade-linux-image-5-4-0-1055-gkeubuntu-upgrade-linux-image-5-4-0-1057-gcpubuntu-upgrade-linux-image-5-4-0-1057-oracleubuntu-upgrade-linux-image-5-4-0-1059-awsubuntu-upgrade-linux-image-5-4-0-1063-azureubuntu-upgrade-linux-image-5-4-0-90-genericubuntu-upgrade-linux-image-5-4-0-90-generic-lpaeubuntu-upgrade-linux-image-5-4-0-90-lowlatencyubuntu-upgrade-linux-image-5-8-0-1043-azureubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-aws-lts-18-04ubuntu-upgrade-linux-image-aws-lts-20-04ubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-azure-lts-18-04ubuntu-upgrade-linux-image-azure-lts-20-04ubuntu-upgrade-linux-image-bluefieldubuntu-upgrade-linux-image-dell300xubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-gcp-lts-18-04ubuntu-upgrade-linux-image-gcp-lts-20-04ubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-hwe-18-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-18-04ubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-gke-5-4ubuntu-upgrade-linux-image-gkeopubuntu-upgrade-linux-image-gkeop-5-4ubuntu-upgrade-linux-image-ibmubuntu-upgrade-linux-image-ibm-lts-20-04ubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-hwe-18-04ubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-oem-osp1ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-oracle-lts-18-04ubuntu-upgrade-linux-image-oracle-lts-20-04ubuntu-upgrade-linux-image-raspiubuntu-upgrade-linux-image-raspi-hwe-18-04ubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-snapdragon-hwe-18-04ubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-16-04ubuntu-upgrade-linux-image-virtual-hwe-18-04ubuntu-upgrade-linux-image-virtual-lts-xenial

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today