In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in __mutex_lock in kernel/locking/mutex.c. This is related to mutex_can_spin_on_owner in kernel/locking/mutex.c, __btrfs_qgroup_free_meta in fs/btrfs/qgroup.c, and btrfs_insert_delayed_items in fs/btrfs/delayed-inode.c.
https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19813
https://lists.debian.org/debian-lts-announce/2020/09/msg00025.html
https://lists.debian.org/debian-lts-announce/2021/03/msg00010.html
Source: MITRE
Published: 2019-12-17
Updated: 2021-03-12
Type: CWE-416
Base Score: 7.1
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Impact Score: 6.9
Exploitability Score: 8.6
Severity: HIGH
Base Score: 5.5
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Impact Score: 3.6
Exploitability Score: 1.8
Severity: MEDIUM
OR
OR
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
OR
OR
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
AND
OR
OR
AND
OR
OR
AND
OR
OR
AND
OR
OR
AND
OR
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
147532 | Debian DLA-2586-1 : linux security update | Nessus | Debian Local Security Checks | high |
145516 | Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4709-1) | Nessus | Ubuntu Local Security Checks | high |
145510 | Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4708-1) | Nessus | Ubuntu Local Security Checks | high |
145458 | Amazon Linux AMI : kernel (ALAS-2021-1477) | Nessus | Amazon Linux Local Security Checks | high |
145456 | Amazon Linux 2 : kernel (ALAS-2021-1588) | Nessus | Amazon Linux Local Security Checks | high |
141098 | Photon OS 2.0: Linux PHSA-2020-2.0-0287 | Nessus | PhotonOS Local Security Checks | high |
141094 | Photon OS 3.0: Linux PHSA-2020-3.0-0145 | Nessus | PhotonOS Local Security Checks | high |
141091 | Photon OS 1.0: Linux PHSA-2020-1.0-0329 | Nessus | PhotonOS Local Security Checks | high |
140933 | Debian DLA-2385-1 : linux-4.19 security update | Nessus | Debian Local Security Checks | high |
138139 | Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4414-1) | Nessus | Ubuntu Local Security Checks | high |
133913 | EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-1112) | Nessus | Huawei Local Security Checks | critical |