retired/CVE-2019-19447


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15

Description: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c
References:
 https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19447
 https://bugzilla.kernel.org/show_bug.cgi?id=205433
 https://bugzilla.suse.com/show_bug.cgi?id=1158819
Notes:
Bugs:
upstream: released (5.5-rc1) [c7df4a1ecb8579838ec8c56b2bb6a6716e974f37]
4.19-upstream-stable: released (4.19.90) [8e7a865366105b978eef4108f49a12100eea4299]
4.9-upstream-stable: released (4.9.208) [e1513b36319dff169e409979867f39eb55a9af03]
3.16-upstream-stable: released (3.16.82) [75b201c2fdfb3cecc3eb6a1dc85b87055de642e9]
sid: released (5.4.6-1)
4.19-buster-security: released (4.19.98-1)
4.9-stretch-security: released (4.9.210-1)
3.16-jessie-security: released (3.16.84-1)