Executive Summary

Informations
NameCVE-2019-17351First vendor Publication2019-10-07
VendorCveLast vendor Modification2019-10-11

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score4.9Attack RangeLocal
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

An issue was discovered in drivers/xen/balloon.c in the Linux kernel before 5.2.3, as used in Xen through 4.12.x, allowing guest OS users to cause a denial of service because of unrestricted resource consumption during the mapping of guest memory, aka CID-6ef36ab967c7.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17351

CWE : Common Weakness Enumeration

%idName
100 %CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')

CPE : Common Platform Enumeration

TypeDescriptionCount
Application17
Os3024
Os176

Sources (Detail)

SourceUrl
MISC https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.2.3
https://github.com/torvalds/linux/commit/6ef36ab967c71690ebe7e5ef997a8be4da3b...
https://xenbits.xen.org/xsa/advisory-300.html

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2019-10-11 21:21:05
  • Multiple Updates
2019-10-08 17:20:21
  • First insertion