CVE-2019-19039

Description

__btrfs_free_extent in fs/btrfs/extent-tree.c in the Linux kernel through 5.3.12 calls btrfs_print_leaf in a certain ENOENT case, which allows local users to obtain potentially sensitive information about register values via the dmesg program. NOTE: The BTRFS development team disputes this issues as not being a vulnerability because “1) The kernel provide facilities to restrict access to dmesg - dmesg_restrict=1 sysctl option. So it's really up to the system administrator to judge whether dmesg access shall be disallowed or not. 2) WARN/WARN_ON are widely used macros in the linux kernel. If this CVE is considered valid this would mean there are literally thousands CVE lurking in the kernel - something which clearly is not the case.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
• v2.0•LOW•Score: 1.9AV:L/AC:M/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.43%• Percentile: 63%

Techniques & Countermeasures

• CWE-532•Insertion of Sensitive Information into Log File

  The product writes sensitive information to a log file.

Affected Systems

• canonical•ubuntu_linux

  14.04 | 16.04 | 18.04

• debian•debian_linux

  9.0

• linux•linux_kernel

  ≤ 5.3.12

References (3)

• https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19039
• https://usn.ubuntu.com/4414-1/
• https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html