CVE-2019-16995

Description

In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.

Affected (25)

Products: Linux: Linux Kernel · Opensuse: Leap · Netapp: Aff A700s Firmware, H300s Firmware, H500s Firmware, H700s Firmware, H300e Firmware, H500e Firmware, H700e Firmware, H410s Firmware, H410c Firmware, H610s Firmware, Data Availability Services, Hci Management Node, Service Processor, Solidfire, Steelstore Cloud Integrated Storage

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 3.17 to 3.18.137
Linux Linux Kernel	From 4.14 to 4.14.107
Linux Linux Kernel	From 4.19 to 4.19.30
Linux Linux Kernel	From 4.20 to 4.20.17
Linux Linux Kernel	From 4.4 to 4.4.177
Linux Linux Kernel	From 4.9 to 4.9.164
Linux Linux Kernel	From 5.0 to 5.0.3
Linux Linux Kernel	Version 5.1 rc1

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Opensuse Leap	Version 15.0
Opensuse Leap	Version 15.1

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp Aff A700s Firmware	All versions

Running on/with	Platform Versions
Netapp Aff A700s	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H300s Firmware	All versions

Running on/with	Platform Versions
Netapp H300s	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H500s Firmware	All versions

Running on/with	Platform Versions
Netapp H500s	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H700s Firmware	All versions

Running on/with	Platform Versions
Netapp H700s	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H300e Firmware	All versions

Running on/with	Platform Versions
Netapp H300e	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H500e Firmware	All versions

Running on/with	Platform Versions
Netapp H500e	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H700e Firmware	All versions

Running on/with	Platform Versions
Netapp H700e	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H410s Firmware	All versions

Running on/with	Platform Versions
Netapp H410s	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H410c Firmware	All versions

Running on/with	Platform Versions
Netapp H410c	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H610s Firmware	All versions

Running on/with	Platform Versions
Netapp H610s	All versions

Configuration M

5 vulnerable

Vulnerable Software	Affected Versions
Netapp Data Availability Services	All versions
Netapp Hci Management Node	All versions
Netapp Service Processor	All versions
Netapp Solidfire	All versions
Netapp Steelstore Cloud Integrated Storage	All versions