Vulnetix
Try Vulnetix Request Demo
CVE-2019-19069 PUBLISHED

A memory leak in the fastrpc_dma_buf_attach() function in drivers/misc/fastrpc.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering dma_get_sgtable() failures, aka CID-fc739a058d99.

EPSS 1.12% · 78.1th percentile

Risk Scores

EPSS Score
1.12%
78.1th percentile

Affected Products

VendorProductVersions
Ubuntu:20.04:LTSlinux-azure-fde0, 5.4.0-1103.109+cvm1.1, 5.4.0-1100.106+cvm1.1
Ubuntu:22.04:LTSlinux-riscv5.15.0-1022.26, 5.15.0-1028.32, 5.15.0-1027.31
Ubuntu:20.04:LTSlinux-gkeop-5.155.15.0-1051.58~20.04.1, 5.15.0-1003.5~20.04.2, 0
Ubuntu:18.04:LTSlinux-azure-edge4.18.0-1007.7~18.04.1, 0, 4.18.0-1006.6~18.04.1
Ubuntu:22.04:LTSlinux-intel-iot-realtime5.15.0-1073.75, 0
Ubuntu:20.04:LTSlinux-gke5.4.0-1061.64, 5.4.0-1062.65, 5.4.0-1063.66
Ubuntu:20.04:LTSlinux-gkeop5.4.0-1098.102, 5.4.0-1009.10, 5.4.0-1010.11
Ubuntu:18.04:LTSlinux-gcp-5.35.3.0-1008.9~18.04.1, 0
Ubuntu:16.04:LTSlinux-hwe-edge4.8.0-32.34~16.04.1, 4.8.0-28.30~16.04.1, 0
Ubuntu:20.04:LTSlinux-raspi25.3.0-1014.16, 0, 5.3.0-1007.8
Ubuntu:18.04:LTSlinux-gcp-edge4.18.0-1005.6~18.04.1, 4.18.0-1008.9~18.04.1, 4.18.0-1009.10~18.04.1
Ubuntu:18.04:LTSlinux-azure-5.30, 5.3.0-1007.8~18.04.1
Ubuntu:22.04:LTSlinux-realtime5.15.0-1032.35, 0
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:20.04:LTSlinux-riscv5.4.0-33.37, 5.4.0-34.38, 5.4.0-36.41
Ubuntu:18.04:LTSlinux-hwe-edge5.0.0-20.21~18.04.1, 5.3.0-22.24~18.04.1, 5.3.0-23.25~18.04.1

Timeline

References

Open in Interactive Console →