3.3

CVE-2019-11884

The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.5% 0.385
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html
Third Party Advisory
Mailing List
https://access.redhat.com/errata/RHSA-2019:3517
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00043.html
Third Party Advisory
Mailing List
https://usn.ubuntu.com/4118-1/
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3309
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/06/msg00010.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2019/06/msg00011.html
Third Party Advisory
Mailing List
https://seclists.org/bugtraq/2019/Jun/26
Third Party Advisory
Mailing List
https://www.debian.org/security/2019/dsa-4465
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00037.html
Third Party Advisory
Mailing List
https://access.redhat.com/errata/RHSA-2020:0740
Third Party Advisory
https://usn.ubuntu.com/4069-1/
Third Party Advisory
https://usn.ubuntu.com/4069-2/
Third Party Advisory
https://usn.ubuntu.com/4076-1/
Third Party Advisory
https://usn.ubuntu.com/4068-1/
Third Party Advisory
https://usn.ubuntu.com/4068-2/
Third Party Advisory
http://www.securityfocus.com/bid/108299
Third Party Advisory
Broken Link
VDB Entry
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.15
Vendor Advisory
Release Notes
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a1616a5ac99ede5d605047a9012481ce7ff18b16
Patch
Vendor Advisory
https://github.com/torvalds/linux/commit/a1616a5ac99ede5d605047a9012481ce7ff18b16
Patch
Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPWHQHNM2MSGO3FDJVIQXQNKYVR7TV45/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LAYXGGJUUYPOMCBZGGDCUZFLUU3JOZG5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF2PDXUGOFEOTPVEACKFIHQB6O4XUIZD/