CVE-2019-13233

HIGH

Linux Kernel < 5.1.9 - Race Condition

Title source: rule
STIX 2.1

Description

In arch/x86/lib/insn-eval.c in the Linux kernel before 5.1.9, there is a use-after-free for access to an LDT entry because of a race condition between modify_ldt() and a #BR exception for an MPX bounds violation.

References (16)

Core 16
Core References
Exploit, Mailing List, Patch, Third Party Advisory x_refsource_misc
https://bugs.chromium.org/p/project-zero/issues/detail?id=1879
Mailing List, Release Notes, Vendor Advisory x_refsource_misc
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.1.9
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20190806-0001/
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2019/dsa-4495
Mailing List mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Aug/13
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4093-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4094-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4117-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4118-1/
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2019:3309
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2019:3517

Scores

CVSS v3 7.0
EPSS 0.0005
EPSS Percentile 16.3%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-362 CWE-416
Status published
Products (1)
linux/linux_kernel < 5.1.9
Published Jul 04, 2019
Tracked Since Feb 18, 2026