CVE-2019-25160

HIGH

Linux Kernel 2.6.19-3.16.65 - Out-of-bounds Read in netlabel

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: netlabel: fix out-of-bounds memory accesses There are two array out-of-bounds memory accesses, one in cipso_v4_map_lvl_valid(), the other in netlbl_bitmap_walk(). Both errors are embarassingly simple, and the fixes are straightforward. As a FYI for anyone backporting this patch to kernels prior to v4.8, you'll want to apply the netlbl_bitmap_walk() patch to cipso_v4_bitmap_walk() as netlbl_bitmap_walk() doesn't exist before Linux v4.8.

Scores

CVSS v3 7.1
EPSS 0.0025
EPSS Percentile 16.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (19)
Linux/Linux < 2.6.19
Linux/Linux 2.6.19
Linux/Linux 3.16.66 - 3.16.*
Linux/Linux 3.18.137 - 3.18.*
Linux/Linux 4.14.106 - 4.14.*
Linux/Linux 4.19.28 - 4.19.*
Linux/Linux 4.20.15 - 4.20.*
Linux/Linux 4.4.177 - 4.4.*
Linux/Linux 4.9.163 - 4.9.*
Linux/Linux 446fda4f26822b2d42ab3396aafcedf38a9ff2b6 - 1c973f9c7cc2b3caae93192fdc8ecb3f0b4ac000
... and 9 more
Published Feb 26, 2024
Tracked Since Feb 18, 2026