Executive Summary

Informations
NameCVE-2019-15538First vendor Publication2019-08-25
VendorCveLast vendor Modification2019-09-04

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score7.8Attack RangeNetwork
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails. This is primarily a local DoS attack vector, but it might result as well in remote DoS if the XFS filesystem is exported for instance via NFS.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15538

CWE : Common Weakness Enumeration

%idName
100 %CWE-399Resource Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Os3307

Sources (Detail)

SourceUrl
CONFIRM https://security.netapp.com/advisory/ntap-20191004-0001/
https://support.f5.com/csp/article/K32592426?utm_source=f5support&utm...
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
MISC https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1f...
https://github.com/torvalds/linux/commit/1fb254aa983bf190cfd685d40c64a480a9ba...
https://lore.kernel.org/linux-xfs/20190823035528.GH1037422@magnolia/
https://lore.kernel.org/linux-xfs/20190823192433.GA8736@eldamar.local
MLIST https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html
https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html
SUSE http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html
UBUNTU https://usn.ubuntu.com/4144-1/
https://usn.ubuntu.com/4147-1/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
DateInformations
2019-10-15 12:03:55
  • Multiple Updates
2019-10-05 12:11:13
  • Multiple Updates
2019-10-02 12:01:36
  • Multiple Updates
2019-09-25 12:11:07
  • Multiple Updates
2019-09-16 12:01:23
  • Multiple Updates
2019-09-14 12:10:41
  • Multiple Updates
2019-09-11 17:18:56
  • Multiple Updates
2019-09-04 12:05:32
  • Multiple Updates
2019-09-03 17:19:17
  • Multiple Updates
2019-08-26 17:19:23
  • Multiple Updates
2019-08-25 21:20:01
  • First insertion