CVE-2019-3900

MEDIUM

Description

An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario.

ID	Name	Product	Family	Severity
145665	CentOS 8 : kernel (CESA-2019:3517)	Nessus	CentOS Local Security Checks	high
140499	Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5845)	Nessus	Oracle Linux Local Security Checks	high
135305	Photon OS 2.0: Linux PHSA-2020-2.0-0225	Nessus	PhotonOS Local Security Checks	medium
134387	EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1186)	Nessus	Huawei Local Security Checks	critical
134312	NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2020-0021)	Nessus	NewStart CGSL Local Security Checks	high
133221	RHEL 8 : kernel (RHSA-2020:0204)	Nessus	Red Hat Local Security Checks	critical
132495	NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0253)	Nessus	NewStart CGSL Local Security Checks	high
132474	NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0247)	Nessus	NewStart CGSL Local Security Checks	high
131675	RHEL 7 : kernel (RHSA-2019:4058)	Nessus	Red Hat Local Security Checks	high
131375	RHEL 7 : kernel (RHSA-2019:3967)	Nessus	Red Hat Local Security Checks	high
131227	Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-089)	Nessus	Virtuozzo Local Security Checks	high
131006	Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20191113)	Nessus	Scientific Linux Local Security Checks	low
130993	Oracle Linux 6 : kernel (ELSA-2019-3836)	Nessus	Oracle Linux Local Security Checks	low
130978	CentOS 6 : kernel (CESA-2019:3836)	Nessus	CentOS Local Security Checks	low
130928	RHEL 6 : kernel (RHSA-2019:3836)	Nessus	Red Hat Local Security Checks	low
130751	Slackware 14.2 : Slackware 14.2 kernel (SSA:2019-311-01)	Nessus	Slackware Local Security Checks	critical
130547	RHEL 8 : kernel (RHSA-2019:3517)	Nessus	Red Hat Local Security Checks	high
130526	RHEL 8 : kernel-rt (RHSA-2019:3309)	Nessus	Red Hat Local Security Checks	high
130376	RHEL 7 : kernel (RHSA-2019:3220)	Nessus	Red Hat Local Security Checks	medium
129920	NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0183)	Nessus	NewStart CGSL Local Security Checks	high
129900	NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0180)	Nessus	NewStart CGSL Local Security Checks	high
128680	Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel regression (USN-4115-2)	Nessus	Ubuntu Local Security Checks	critical
128651	CentOS 7 : kernel (CESA-2019:2029)	Nessus	CentOS Local Security Checks	high
128478	Ubuntu 16.04 LTS / 18.04 LTS : linux-aws vulnerabilities (USN-4118-1)	Nessus	Ubuntu Local Security Checks	critical
128477	Ubuntu 19.04 : linux-aws vulnerabilities (USN-4117-1)	Nessus	Ubuntu Local Security Checks	high
128476	Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities (USN-4116-1)	Nessus	Ubuntu Local Security Checks	medium
128475	Ubuntu 16.04 LTS / 18.04 LTS : linux, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, (USN-4115-1)	Nessus	Ubuntu Local Security Checks	critical
128474	Ubuntu 18.04 LTS / 19.04 : linux, linux-azure, linux-gcp, linux-gke-5.0, linux-hwe, linux-kvm, (USN-4114-1)	Nessus	Ubuntu Local Security Checks	medium
128226	Scientific Linux Security Update : kernel on SL7.x x86_64 (20190806)	Nessus	Scientific Linux Local Security Checks	high
127921	Debian DLA-1885-1 : linux-4.9 security update	Nessus	Debian Local Security Checks	high
127867	Debian DSA-4497-1 : linux - security update	Nessus	Debian Local Security Checks	high
127866	Debian DLA-1884-1 : linux security update	Nessus	Debian Local Security Checks	high
127655	RHEL 7 : kernel-rt (RHSA-2019:2043)	Nessus	Red Hat Local Security Checks	high
127650	RHEL 7 : kernel (RHSA-2019:2029)	Nessus	Red Hat Local Security Checks	high
127643	RHEL 7 : kernel-alt (RHSA-2019:1973)	Nessus	Red Hat Local Security Checks	medium
127060	Amazon Linux AMI : kernel (ALAS-2019-1232)	Nessus	Amazon Linux Local Security Checks	medium
126956	Amazon Linux 2 : kernel (ALAS-2019-1232)	Nessus	Amazon Linux Local Security Checks	medium
125588	EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2019-1636)	Nessus	Huawei Local Security Checks	high
124661	Fedora 28 : kernel (2019-a6cd583a8d)	Nessus	Fedora Local Security Checks	high
124572	Fedora 30 : kernel (2019-87d807d7cb)	Nessus	Fedora Local Security Checks	medium
124571	Fedora 29 : kernel (2019-8219efa9f6)	Nessus	Fedora Local Security Checks	high

CVE-2019-3900

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0