CVE-2019-16995

Description

In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
• v2.0•HIGH•Score: 7.8AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS Trends

Current EPSS score: 2.00%• Percentile: 84%

Techniques & Countermeasures

• CWE-401•Missing Release of Memory after Effective Lifetime

  The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

Affected Systems

• linux•linux_kernel

  ≥ 3.17, < 3.18.137 | ≥ 4.4, < 4.4.177 | ≥ 4.9, < 4.9.164 | ≥ 4.14, < 4.14.107 | ≥ 4.19, < 4.19.30 | ≥ 4.20, < 4.20.17 | ≥ 5.0, < 5.0.3 | 5.1:rc1

• netapp•aff_a700s

  na

• netapp•data_availability_services

  na

• netapp•h300e

  na

• netapp•h300s_firmware

  na

• netapp•h410c_firmware

  na

• netapp•h410s_firmware

  na

• netapp•h500e

  na

• netapp•h500s_firmware

  na

• netapp•h610s_firmware

  na

• netapp•h700e

  na

• netapp•h700s_firmware

  na

• netapp•hci_management_node

  na

• netapp•service_processor

  na

• netapp•solidfire

  na

• netapp•steelstore_cloud_integrated_storage

  na

• opensuse•leap

  15.0 | 15.1

References (6)

• https://github.com/torvalds/linux/commit/6caabe7f197d3466d238f70915d65301f1716626
• https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6caabe7f197d3466d238f70915d65301f1716626
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.3
• https://security.netapp.com/advisory/ntap-20191031-0005/
• http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00010.html
• http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html