CVE-2019-15916

HIGH

Linux kernel <5.0.1 - DoS

Title source: llm

Description

An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service.

References (8)

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:3309

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:3517

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2020:0740

[Release Notes, Vendor Advisory] https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.1

[Patch, Vendor Advisory] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=895a5e96dbd6386c8e78e5b78e067dcc67b7f0ab

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20191004-0001/

[Vendor Advisory] https://support.f5.com/csp/article/K57418558?utm_source=f5support&amp%3Butm_medium=RSS

Scores

CVSS v3 7.5

EPSS 0.0261

EPSS Percentile 85.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (1)

linux/linux_kernel < 3.16.70

Timeline

Published Sep 04, 2019

Tracked Since Feb 18, 2026