CVE-2019-5023
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/10/2019
Last modified:
07/06/2022
Description
An exploitable vulnerability exists in the grsecurity PaX patch for the function read_kmem, in PaX from version pax-linux-4.9.8-test1 to 4.9.24-test7, grsecurity official from version grsecurity-3.1-4.9.8-201702060653 to grsecurity-3.1-4.9.24-201704252333, grsecurity unofficial from version v4.9.25-unofficialgrsec to v4.9.74-unofficialgrsec. PaX adds a temp buffer to the read_kmem function, which is never freed when an invalid address is supplied. This results in a memory leakage that can lead to a crash of the system. An attacker needs to induce a read to /dev/kmem using an invalid address to exploit this vulnerability.
Impact
Base Score 3.x
5.90
Severity 3.x
MEDIUM
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:opensrcsec:grsecurity:*:*:*:*:official:*:*:* | 3.1-4.9.8-201702060653 (including) | 3.1-4.9.24-201704252333 (including) |
| cpe:2.3:a:opensrcsec:grsecurity:*:*:*:*:unofficial:*:*:* | 4.9.25 (including) | 4.9.74 (including) |
| cpe:2.3:a:opensrcsec:pax:*:*:*:*:*:*:*:* | pax-linux-4.9.8-test1 (including) | pax-linux-4.9.8-test7 (including) |
To consult the complete list of CPE names with products and versions, see this page