CVE-2019-16089

MEDIUM

Linux kernel <5.2.13 - Info Disclosure

Title source: llm
STIX 2.1

Description

An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return value.

References (8)

Core 8
Core References
Mailing List, Patch, Vendor Advisory x_refsource_misc
https://lore.kernel.org/patchwork/patch/1106884/
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20191004-0001/
Patch, Vendor Advisory x_refsource_misc
https://lore.kernel.org/patchwork/patch/1126650/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4414-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4425-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4439-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4440-1/

Scores

CVSS v3 4.1
EPSS 0.0039
EPSS Percentile 30.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-476
Status published
Products (1)
linux/linux_kernel < 5.2.13
Published Sep 06, 2019
Tracked Since Feb 18, 2026