check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
History
03 Feb 2024, 02:25
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) https://lists.debian.org/debian-lts-announce/2019/10/msg00000.html - Mailing List | |
References | (BUGTRAQ) https://seclists.org/bugtraq/2019/Sep/41 - Mailing List, Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4162-1/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4147-1/ - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html - Mailing List | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html - Mailing List | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20190905-0002/ - Third Party Advisory | |
References | (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/tiwai/sound.git/commit/?id=19bce474c45be69a284ecee660aa12d8f1e88f18 - Mailing List, Patch | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html - Mailing List | |
References | (UBUNTU) https://usn.ubuntu.com/4163-2/ - Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2019/dsa-4531 - Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html - Patch, Third Party Advisory, VDB Entry | |
References | (BUGTRAQ) https://seclists.org/bugtraq/2019/Nov/11 - Mailing List, Patch, Third Party Advisory | |
References | () https://lore.kernel.org/lkml/20190815043554.16623-1-benquike%40gmail.com/ - Mailing List, Patch | |
References | (UBUNTU) https://usn.ubuntu.com/4162-2/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4163-1/ - Third Party Advisory | |
CPE | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:-:*:*:* cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:esm:*:*:* cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:* cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:* cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:* |
|
First Time |
Netapp solidfire
Canonical Canonical ubuntu Linux Debian Netapp Netapp solidfire Baseboard Management Controller Netapp data Availability Services Opensuse leap Netapp h410c Debian debian Linux Netapp hci Management Node Netapp active Iq Unified Manager Netapp h410c Firmware Opensuse Netapp solidfire Baseboard Management Controller Firmware |
07 Nov 2023, 03:05
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2019-08-16 14:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-15118
Mitre link : CVE-2019-15118
CVE.ORG link : CVE-2019-15118
JSON object : View
Products Affected
netapp
- active_iq_unified_manager
- data_availability_services
- hci_management_node
- solidfire_baseboard_management_controller
- h410c_firmware
- h410c
- solidfire_baseboard_management_controller_firmware
- solidfire
opensuse
- leap
linux
- linux_kernel
debian
- debian_linux
canonical
- ubuntu_linux
CWE
CWE-674
Uncontrolled Recursion