← back
CVE-2019-11810

CVE-2019-11810

EPSS 5.8%
An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasas_create_frame_pool() fails in megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This causes a Denial of Service, related to a use-after-free.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00055.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-08/msg00056.htmlhttps://access.redhat.com/errata/RHSA-2019:1959https://access.redhat.com/errata/RHSA-2019:1971https://access.redhat.com/errata/RHSA-2019:2029https://access.redhat.com/errata/RHSA-2019:2043https://access.redhat.com/errata/RHSA-2019:2736https://access.redhat.com/errata/RHSA-2019:2837https://access.redhat.com/errata/RHSA-2019:3217https://access.redhat.com/errata/RHSA-2020:0036https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.7https://github.com/torvalds/linux/commit/bcf3b67d16a4c8ffae0aa79de5853435e683945c