Wind River Support Network

HomeDefectsLIN10-6855
Not to be fixed

LIN10-6855 : Security Advisory - linux - CVE-2019-19814

Created: Dec 17, 2019    Updated: Dec 22, 2022
Resolved Date: Dec 22, 2022
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Kernel

Description

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can cause __remove_dirty_segment slab-out-of-bounds write access because an array is bounded by the number of dirty types (8) but the array index can exceed this.

CREATE(Triage):(User=admin) CVE-2019-19814 (https://nvd.nist.gov/vuln/detail/CVE-2019-19814)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube