Vulnetix
Try Vulnetix Request Demo
CVE-2019-19044 PUBLISHED

Two memory leaks in the v3d_submit_cl_ioctl() function in drivers/gpu/drm/v3d/v3d_gem.c in the Linux kernel before 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering kcalloc() or v3d_job_init() failures, aka CID-29cd13cfd762.

EPSS 2.09% · 83.9th percentile

Risk Scores

EPSS Score
2.09%
83.9th percentile

Affected Products

VendorProductVersions
Ubuntu:18.04:LTSlinux-gcp-5.30, 5.3.0-1009.10~18.04.1, 5.3.0-1008.9~18.04.1
Ubuntu:20.04:LTSlinux-gkeop5.4.0-1031.32, 5.4.0-1032.33, 5.4.0-1033.34
Ubuntu:20.04:LTSlinux-gkeop-5.155.15.0-1003.5~20.04.2, 5.15.0-1050.57~20.04.1, 5.15.0-1049.56~20.04.1
Ubuntu:22.04:LTSlinux-realtime0, 5.15.0-1032.35
Ubuntu:22.04:LTSlinux-riscv0, 5.13.0-1010.11+22.04.1, 5.15.0-1028.32
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1089.94+cvm1.2, 0, 5.4.0-1063.66+cvm2.2
Ubuntu:16.04:LTSlinux-hwe-edge4.15.0-22.24~16.04.1, 4.15.0-20.21~16.04.1, 4.15.0-23.25~16.04.1
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:20.04:LTSlinux-raspi25.4.0-1004.4, 0, 5.3.0-1007.8
Ubuntu:18.04:LTSlinux-hwe-edge5.0.0-19.20~18.04.1, 0, 5.0.0-15.16~18.04.1
Ubuntu:20.04:LTSlinux-riscv5.4.0-36.41, 5.4.0-39.44, 5.4.0-40.45
Ubuntu:22.04:LTSlinux-intel-iot-realtime0, 5.15.0-1073.75
Ubuntu:18.04:LTSlinux-gcp-edge4.18.0-1013.14~18.04.1, 5.0.0-1013.13~18.04.1, 5.0.0-1011.11~18.04.1
Ubuntu:18.04:LTSlinux-azure-edge4.18.0-1007.7~18.04.1, 0, 5.0.0-1012.12~18.04.2
Ubuntu:18.04:LTSlinux-azure-5.35.3.0-1008.9~18.04.1, 5.3.0-1007.8~18.04.1, 0
Ubuntu:20.04:LTSlinux-gke5.4.0-1042.44, 5.4.0-1043.45, 5.4.0-1044.46

Timeline

References

Open in Interactive Console →