Wind River Support Network

HomeDefectsLINCD-396

Fixed

LINCD-396 : Security Advisory - linux - CVE-2019-19067

Created: Nov 18, 2019 Updated: Apr 22, 2022

Resolved Date: Nov 28, 2019

Previous ID: LIN1019-3535

Found In Version: 10.20.3.0

Fix Version: 10.20.3.0

Severity: Standard

Applicable for: Wind River Linux CD

Component/s: Kernel

Description

Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c in the Linux kernel before 5.3.8 allow attackers to cause a denial of service (memory consumption) by triggering mfd_add_hotplug_devices() or pm_genpd_add_device() failures, aka CID-57be09c6e874.

CREATE(Triage):(User=admin) CVE-2019-19067 (https://nvd.nist.gov/vuln/detail/CVE-2019-19067)

CVEs

CVE-2019-19067