Home

CVE-2019-19769

Description

In the Linux kernel 5.3.10, there is a use-after-free (read) in the perf_trace_lock_acquire function (related to include/trace/events/lock.h).

Risk Information

Base Score
6.7
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.327

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel for Google Container Engine (GKE) systems (USN-4368-1) linux-image-gke-5.0_5.0.0.1037.25_amd64.debLinux
Linux kernel for Google Container Engine (GKE) systems (USN-4368-1) linux-image-oem-osp1_5.0.0.1052.55_amd64.debLinux
Linux kernel for Google Container Engine (GKE) systems (USN-4368-1) linux-image-5.0.0-1037-gke_5.0.0-1037.38_amd64.debLinux
Linux kernel for Google Container Engine (GKE) systems (USN-4368-1) linux-image-5.0.0-1052-oem-osp1_5.0.0-1052.57_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-aws_5.3.0.1019.20_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-aws_5.3.0.1019.31_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-gcp_5.3.0.1020.19_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-gcp_5.3.0.1020.31_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-gke_5.3.0.1020.31_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-kvm_5.3.0.1017.19_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-oracle_5.3.0.1018.19_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-oracle_5.3.0.1018.33_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-generic_5.3.0.53.45_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-gke-5.3_5.3.0.1020.10_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-virtual_5.3.0.53.45_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-aws-edge_5.3.0.1019.20_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-gcp-edge_5.3.0.1020.19_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-gkeop-5.3_5.3.0.53.109_i386.debLinux
Linux kernel (USN-4369-1) linux-image-gkeop-5.3_5.3.0.53.109_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-lowlatency_5.3.0.53.45_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1017-kvm_5.3.0-1017.19_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1019-aws_5.3.0-1019.21_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1019-aws_5.3.0-1019.21~18.04.1_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1020-gcp_5.3.0-1020.22_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1020-gcp_5.3.0-1020.22~18.04.1_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1020-gke_5.3.0-1020.22~18.04.1_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-53-generic_5.3.0-53.47_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-53-generic_5.3.0-53.47~18.04.1_i386.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-53-generic_5.3.0-53.47~18.04.1_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1018-oracle_5.3.0-1018.20_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-1018-oracle_5.3.0-1018.20~18.04.1_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-generic-hwe-18.04_5.3.0.53.109_i386.debLinux
Linux kernel (USN-4369-1) linux-image-generic-hwe-18.04_5.3.0.53.109_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-virtual-hwe-18.04_5.3.0.53.109_i386.debLinux
Linux kernel (USN-4369-1) linux-image-virtual-hwe-18.04_5.3.0.53.109_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-53-lowlatency_5.3.0-53.47_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-53-lowlatency_5.3.0-53.47~18.04.1_i386.debLinux
Linux kernel (USN-4369-1) linux-image-5.3.0-53-lowlatency_5.3.0-53.47~18.04.1_amd64.debLinux
Linux kernel (USN-4369-1) linux-image-lowlatency-hwe-18.04_5.3.0.53.109_i386.debLinux
Linux kernel (USN-4369-1) linux-image-lowlatency-hwe-18.04_5.3.0.53.109_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234