Note:
This project will be discontinued after December 13, 2021. [more]
2019-02-21
A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.
| Products | Ubuntu_linux, Debian_linux, Linux_kernel, Leap |
| Type | Improper Release of Memory Before Removing Last Reference (CWE-401) |
| First patch | - None (likely due to unavailable code) |
| Links |
• https://usn.ubuntu.com/3930-2/
• https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1935698.html • http://www.securityfocus.com/bid/107120 • https://usn.ubuntu.com/3931-2/ • http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00052.html |