A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption), aka CID-78beef629fd9. NOTE: This has been argued as not a valid vulnerability. The upstream commit 78beef629fd9 was reverted
References
Link | Resource |
---|---|
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.6 | Release Notes Vendor Advisory |
https://git.kernel.org/linus/1d1997db870f4058676439ef7014390ba9e24eb2 | Patch Vendor Advisory |
https://github.com/torvalds/linux/commit/78beef629fd95be4ed853b2d37b832f766bd96ca | Patch Third Party Advisory |
https://lore.kernel.org/lkml/20191204103955.63c4d9af%40cakuba.netronome.com/ | |
https://security.netapp.com/advisory/ntap-20191205-0001/ | Third Party Advisory |
https://usn.ubuntu.com/4209-1/ | Third Party Advisory |
Configurations
History
07 Nov 2023, 03:07
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption), aka CID-78beef629fd9. NOTE: This has been argued as not a valid vulnerability. The upstream commit 78beef629fd9 was reverted |
Information
Published : 2019-11-18 06:15
Updated : 2024-04-11 01:04
NVD link : CVE-2019-19076
Mitre link : CVE-2019-19076
CVE.ORG link : CVE-2019-19076
JSON object : View
Products Affected
linux
- linux_kernel
redhat
- enterprise_linux
canonical
- ubuntu_linux
CWE
CWE-401
Missing Release of Memory after Effective Lifetime