What is the severity of CVE-2019-19071?

CVE-2019-19071 is classified as a high severity vulnerability due to its potential to cause denial of service through memory consumption.

How do I fix CVE-2019-19071?

To mitigate CVE-2019-19071, update the Linux kernel to version 5.10.223-1 or later.

Which Linux kernel versions are affected by CVE-2019-19071?

CVE-2019-19071 affects Linux kernel versions from 4.14 up to 5.3.11.

What causes CVE-2019-19071?

CVE-2019-19071 is caused by a memory leak in the rsi_send_beacon() function due to rsi_prepare_beacon() failures.

Is CVE-2019-19071 specific to any particular Linux distribution?

CVE-2019-19071 affects multiple distributions, including Ubuntu versions 14.04, 16.04, 18.04, and 19.10.

Vulnerability/
CVE-2019-19071

high

7.8

CWE

401

18/11/2019

21/11/2024

CVE-2019-19071

First published: Mon Nov 18 2019(Updated: )

A memory leak in the rsi_send_beacon() function in drivers/net/wireless/rsi/rsi_91x_mgmt.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering rsi_prepare_beacon() failures, aka CID-d563131ef23c.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Linux Kernel	>=4.14<4.14.159
Linux Kernel	>=4.15<4.19.89
Linux Kernel	>=4.20<5.3.16
Linux Kernel	>=5.4.0<5.4.3
Ubuntu Linux	=14.04
Ubuntu Linux	=16.04
Ubuntu Linux	=18.04
Ubuntu Linux	=19.10
debian/linux		5.10.223-1 5.10.226-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.15-1
Ubuntu	=14.04
Ubuntu	=16.04
Ubuntu	=18.04
Ubuntu	=19.10

Remedy

https://github.com/torvalds/linux/commit/d563131ef23cbc756026f839a82598c8445bc45f

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-19071?
CVE-2019-19071 is classified as a high severity vulnerability due to its potential to cause denial of service through memory consumption.
How do I fix CVE-2019-19071?
To mitigate CVE-2019-19071, update the Linux kernel to version 5.10.223-1 or later.
Which Linux kernel versions are affected by CVE-2019-19071?
CVE-2019-19071 affects Linux kernel versions from 4.14 up to 5.3.11.
What causes CVE-2019-19071?
CVE-2019-19071 is caused by a memory leak in the rsi_send_beacon() function due to rsi_prepare_beacon() failures.
Is CVE-2019-19071 specific to any particular Linux distribution?
CVE-2019-19071 affects multiple distributions, including Ubuntu versions 14.04, 16.04, 18.04, and 19.10.

agent/type
collector/launchpad-cve
source/Launchpad
agent/severity
agent/weakness
collector/mitre-cve
source/MITRE
agent/references
agent/remedy
agent/first-publish-date
agent/trending
agent/last-modified-date
agent/source
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/tags
agent/author
collector/usn-cve
source/Ubuntu
agent/description
collector/security-tracker-debian
source/Debian
agent/event
agent/softwarecombine
collector/nvd-index
vendor/linux
canonical/linux kernel
version/linux kernel/4.14
version/linux kernel/4.15
version/linux kernel/4.20
version/linux kernel/5.4.0
vendor/canonical
canonical/ubuntu linux
version/ubuntu linux/14.04
version/ubuntu linux/16.04
version/ubuntu linux/18.04
version/ubuntu linux/19.10
package-manager/debian
canonical/ubuntu
version/ubuntu/14.04
version/ubuntu/16.04
version/ubuntu/18.04
version/ubuntu/19.10