Wind River Support Network

HomeDefectsSCP7-1014
Fixed

SCP7-1014 : Security Advisory - linux - CVE-2019-12614

Created: Jun 11, 2019    Updated: Sep 17, 2019
Resolved Date: Sep 17, 2019
Found In Version: 7.0.0.2
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel

Description

An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash).

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-12614 User=admin}
Live chat
Online