VDB
CVE-2019-11811
CVE-2019-11811
PUBLISHED
An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports after the ipmi_si module is removed, related to drivers/char/ipmi/ipmi_si_intf.c, drivers/char/ipmi/ipmi_si_mem_io.c, and drivers/char/ipmi/ipmi_si_port_io.c.
EPSS 0.07% · 21.2th percentile
Risk Scores
EPSS Score
0.07%
21.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:Pro:14.04:LTS | linux | 3.13.0-23.45, 3.13.0-24.47, 3.13.0-27.50 |
| Ubuntu:18.04:LTS | linux-hwe | 4.18.0-16.17~18.04.1, 4.18.0-17.18~18.04.1, 4.18.0-18.19~18.04.1 |
| Ubuntu:Pro:14.04:LTS | linux-lts-xenial | *, 0, 4.4.0-13.29~14.04.1 |
| Ubuntu:Pro:14.04:LTS | linux-azure | 4.15.0-1023.24~14.04.1, 4.15.0-1030.31~14.04.1, 4.15.0-1031.32~14.04.1 |
Exploit Intelligence
- poc for cve-2017-10661 (github-poc)
- poc for cve-2017-10661 (github-poc)
- poc for cve-2017-10661 (github-poc)
- poc for cve-2017-10661 (github-poc)
- poc for cve-2017-10661 (github-poc)
- poc for cve-2017-10661 (github-poc)
- Spydomain/CVE-2017-1000112-PoC (github-poc)
- Spydomain/CVE-2017-1000112-PoC (github-poc)
- Spydomain/CVE-2017-1000112-PoC (github-poc)
- Spydomain/CVE-2017-1000112-PoC (github-poc)
…and 34 more exploits
Timeline
- May 7, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2019-11811 third-party-advisory
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.4 third-party-advisory
- https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=401e7e88d4ef80188ffa07095ac00456f901b8c4 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2019-11811 third-party-advisory