Executive Summary

Informations
NameCVE-2019-11884First vendor Publication2019-05-10
VendorCveLast vendor Modification2019-05-31

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score2.1Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11884

CWE : Common Weakness Enumeration

%idName
100 %CWE-77Improper Sanitization of Special Elements used in a Command ('Command Injection')

CPE : Common Platform Enumeration

TypeDescriptionCount
Os2762

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/108299
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
MISC https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.15
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a1...
https://github.com/torvalds/linux/commit/a1616a5ac99ede5d605047a9012481ce7ff1...
SUSE http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00037.html
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00043.html
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
DateInformations
2019-06-15 12:10:34
  • Multiple Updates
2019-05-31 17:19:30
  • Multiple Updates
2019-05-20 21:19:23
  • Multiple Updates
2019-05-17 09:18:23
  • Multiple Updates
2019-05-16 21:19:34
  • Multiple Updates
2019-05-16 00:19:17
  • Multiple Updates
2019-05-13 21:19:26
  • Multiple Updates
2019-05-13 17:19:05
  • Multiple Updates
2019-05-11 05:18:42
  • First insertion