Executive Summary

Informations
NameCVE-2019-16995First vendor Publication2019-09-30
VendorCveLast vendor Modification2019-10-04

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score7.8Attack RangeNetwork
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16995

CWE : Common Weakness Enumeration

%idName
100 %CWE-772Missing Release of Resource after Effective Lifetime

CPE : Common Platform Enumeration

TypeDescriptionCount
Os2981

Sources (Detail)

SourceUrl
MISC https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.3
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6c...
https://github.com/torvalds/linux/commit/6caabe7f197d3466d238f70915d65301f171...

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2019-10-04 21:20:33
  • Multiple Updates
2019-09-30 21:20:08
  • First insertion