CVE-2019-11487
Description
The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.04
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-4069-1) linux-image-aws_5.0.0.1011.11_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-gcp_5.0.0.1011.11_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-gke_5.0.0.1011.11_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-kvm_5.0.0.1011.11_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-azure_5.0.0.1012.11_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-generic_5.0.0.21.22_i386.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-generic_5.0.0.21.22_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-virtual_5.0.0.21.22_i386.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-virtual_5.0.0.21.22_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-lowlatency_5.0.0.21.22_i386.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-lowlatency_5.0.0.21.22_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-1011-aws_5.0.0-1011.12_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-1011-gcp_5.0.0-1011.11_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-1011-kvm_5.0.0-1011.12_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-1012-azure_5.0.0-1012.12_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-21-generic_5.0.0-21.22_i386.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-21-generic_5.0.0-21.22_amd64.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-21-lowlatency_5.0.0-21.22_i386.deb | Linux |
| Linux kernel (USN-4069-1) linux-image-5.0.0-21-lowlatency_5.0.0-21.22_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-5.0.0-23-generic_5.0.0-23.24~18.04.1_i386.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-5.0.0-23-generic_5.0.0-23.24~18.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-generic-hwe-18.04_5.0.0.23.80_i386.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-generic-hwe-18.04_5.0.0.23.80_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-virtual-hwe-18.04_5.0.0.23.80_i386.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-virtual-hwe-18.04_5.0.0.23.80_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-5.0.0-23-lowlatency_5.0.0-23.24~18.04.1_i386.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-5.0.0-23-lowlatency_5.0.0-23.24~18.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-lowlatency-hwe-18.04_5.0.0.23.80_i386.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-4069-2) linux-image-lowlatency-hwe-18.04_5.0.0.23.80_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-gcp_4.15.0.1041.55_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-gke_4.15.0.1041.44_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-gke_4.15.0.1041.55_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-kvm_4.15.0.1043.43_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-oem_4.15.0.60.81_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-azure_4.15.0.1056.59_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-oracle_4.15.0.1022.16_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-oracle_4.15.0.1022.25_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-generic_4.15.0.60.62_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-generic_4.15.0.60.62_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-virtual_4.15.0.60.62_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-virtual_4.15.0.60.62_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-gke-4.15_4.15.0.1041.44_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-lowlatency_4.15.0.60.62_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-lowlatency_4.15.0.60.62_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-1041-gcp_4.15.0-1041.43_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-1041-gke_4.15.0-1041.43_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-1043-kvm_4.15.0-1043.43_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-1056-azure_4.15.0-1056.61_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-generic_4.15.0-60.67_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-generic_4.15.0-60.67_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-generic_4.15.0-60.67~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-generic_4.15.0-60.67~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-generic-hwe-16.04_4.15.0.60.81_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-generic-hwe-16.04_4.15.0.60.81_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-virtual-hwe-16.04_4.15.0.60.81_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-virtual-hwe-16.04_4.15.0.60.81_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-1022-oracle_4.15.0-1022.25_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-1022-oracle_4.15.0-1022.25~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-lowlatency_4.15.0-60.67_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-lowlatency_4.15.0-60.67_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-lowlatency_4.15.0-60.67~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-4.15.0-60-lowlatency_4.15.0-60.67~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-lowlatency-hwe-16.04_4.15.0.60.81_i386.deb | Linux |
| Linux kernel (USN-4115-1) linux-image-lowlatency-hwe-16.04_4.15.0.60.81_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-aws_4.15.0.1047.46_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-aws-hwe_4.15.0.1047.47_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-4.15.0-1047-aws_4.15.0-1047.49_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-4.15.0-1047-aws_4.15.0-1047.49~16.04.1_amd64.deb | Linux |
| (RHSA-2019:2703) kernel security and bug fix update bpftool-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-abi-whitelists-4.18.0-80.11.1.el8_0.noarch.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-core-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-cross-headers-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-core-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-devel-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-modules-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-modules-extra-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-devel-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-doc-4.18.0-80.11.1.el8_0.noarch.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-headers-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-modules-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-modules-extra-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-tools-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-tools-libs-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update perf-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update python3-perf-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| Linux kernel (USN-4145-1) linux-image-aws_4.4.0.1095.99_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-kvm_4.4.0.1059.59_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-generic_4.4.0.165.173_i386.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-generic_4.4.0.165.173_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-virtual_4.4.0.165.173_i386.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-virtual_4.4.0.165.173_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-lowlatency_4.4.0.165.173_i386.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-lowlatency_4.4.0.165.173_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-4.4.0-1059-kvm_4.4.0-1059.66_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-4.4.0-1095-aws_4.4.0-1095.106_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-4.4.0-165-generic_4.4.0-165.193_i386.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-4.4.0-165-generic_4.4.0-165.193_amd64.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-4.4.0-165-lowlatency_4.4.0-165.193_i386.deb | Linux |
| Linux kernel (USN-4145-1) linux-image-4.4.0-165-lowlatency_4.4.0-165.193_amd64.deb | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-abi-whitelists-2.6.32-754.35.1.el6.noarch.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-debug-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-debug-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-debug-devel-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-debug-devel-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-devel-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-devel-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-doc-2.6.32-754.35.1.el6.noarch.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-firmware-2.6.32-754.35.1.el6.noarch.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-headers-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update kernel-headers-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update perf-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update perf-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update python-perf-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (RHSA-2020:4182) kernel security and bug fix update python-perf-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-abi-whitelists-2.6.32-754.35.1.el6.noarch.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-debug-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-debug-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-debug-devel-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-debug-devel-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-devel-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-devel-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-doc-2.6.32-754.35.1.el6.noarch.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-firmware-2.6.32-754.35.1.el6.noarch.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-headers-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update kernel-headers-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update perf-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update python-perf-2.6.32-754.35.1.el6.i686.rpm | Linux |
| (CESA-2020:4182) kernel security and bug fix update python-perf-2.6.32-754.35.1.el6.x86_64.rpm | Linux |
| Use After Free Vulnerability (CVE-2019-11487) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234