CVE-2019-25160

netlabel: fix out-of-bounds memory accesses

Severity Score

7.1

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: netlabel: fix out-of-bounds memory accesses There are two array out-of-bounds memory accesses, one in
cipso_v4_map_lvl_valid(), the other in netlbl_bitmap_walk(). Both
errors are embarassingly simple, and the fixes are straightforward. As a FYI for anyone backporting this patch to kernels prior to v4.8,
you'll want to apply the netlbl_bitmap_walk() patch to
cipso_v4_bitmap_walk() as netlbl_bitmap_walk() doesn't exist before
Linux v4.8.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: netlabel: corrige accesos a memoria fuera de los límites Hay dos accesos a memoria fuera de los límites de matriz, uno en cipso_v4_map_lvl_valid() y el otro en netlbl_bitmap_walk(). Ambos errores son vergonzosamente simples y las soluciones son sencillas. Para su información, cualquiera que esté implementando este parche en kernels anteriores a v4.8, querrá aplicar el parche netlbl_bitmap_walk() a cipso_v4_bitmap_walk() ya que netlbl_bitmap_walk() no existe antes de Linux v4.8.

In the Linux kernel, the following vulnerability has been resolved: netlabel: fix out-of-bounds memory accesses There are two array out-of-bounds memory accesses, one in cipso_v4_map_lvl_valid(), the other in netlbl_bitmap_walk(). Both errors are embarassingly simple, and the fixes are straightforward. As a FYI for anyone backporting this patch to kernels prior to v4.8, you'll want to apply the netlbl_bitmap_walk() patch to cipso_v4_bitmap_walk() as netlbl_bitmap_walk() doesn't exist before Linux v4.8.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

Complete

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-26 CVE Reserved
2024-02-26 CVE Published
2024-12-19 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-125: Out-of-bounds Read

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/446fda4f26822b2d42ab3396aafcedf38a9ff2b6	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/97bc3683c24999ee621d847c9348c75d2fe86272	2019-05-02
https://git.kernel.org/stable/c/c61d01faa5550e06794dcf86125ccd325bfad950	2019-03-23
https://git.kernel.org/stable/c/dc18101f95fa6e815f426316b8b9a5cee28a334e	2019-03-23
https://git.kernel.org/stable/c/1c973f9c7cc2b3caae93192fdc8ecb3f0b4ac000	2019-03-13
https://git.kernel.org/stable/c/fcfe700acdc1c72eab231300e82b962bac2b2b2c	2019-03-13
https://git.kernel.org/stable/c/e3713abc4248aa6bcc11173d754c418b02a62cbb	2019-03-10
https://git.kernel.org/stable/c/fbf9578919d6c91100ec63acf2cba641383f6c78	2019-03-10
https://git.kernel.org/stable/c/5578de4834fe0f2a34fedc7374be691443396d1f	2019-02-28

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 3.16.66 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 3.16.66"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 3.18.137 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 3.18.137"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 4.4.177 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 4.4.177"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 4.9.163 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 4.9.163"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 4.14.106 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 4.14.106"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 4.19.28 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 4.19.28"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 4.20.15 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 4.20.15"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.19 < 5.0 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.19 < 5.0"		en		Affected