CVE-2019-16233

Published: Sep 11, 2019Modified: Nov 21, 2024

4.1

Vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Exploitability: 0.5 / Impact: 3.6

Source: NVD

Description

drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.

Affected (9)

Products: Linux: Linux Kernel · Canonical: Ubuntu Linux · Opensuse: Leap · +1 more

Show all products

Linux: Linux Kernel · Canonical: Ubuntu Linux · Opensuse: Leap · Redhat: Enterprise Linux

1 product

1 product

1 product

1 product

Enterprise Linux

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Version 5.2.14

Configuration B

8 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Canonical Ubuntu Linux	Version 19.04
Opensuse Leap	Version 15.0
Opensuse Leap	Version 15.1
Redhat Enterprise Linux	Version 7.0
Redhat Enterprise Linux	Version 8.0

Related CWEs

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (16)

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00010.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://lkml.org/lkml/2019/9/9/487

Source: cve@mitre.org

PatchThird Party Advisory

https://security.netapp.com/advisory/ntap-20191004-0001/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/4226-1/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/4227-1/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/4227-2/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/4346-1/

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00010.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lkml.org/lkml/2019/9/9/487

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://security.netapp.com/advisory/ntap-20191004-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/4226-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/4227-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/4227-2/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/4346-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.