Bug 1775803 (CVE-2019-19039) - CVE-2019-19039 kernel: information disclosure in __btrfs_free_extent in fs/btrfs/extent-tree.c
Summary: CVE-2019-19039 kernel: information disclosure in __btrfs_free_extent in fs/bt...
Keywords:
Status: NEW
Alias: CVE-2019-19039
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1775804
Blocks: 1775805
TreeView+ depends on / blocked
 
Reported: 2019-11-22 20:42 UTC by Guilherme de Almeida Suckevicz
Modified: 2019-12-25 15:55 UTC (History)
47 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:


Attachments (Terms of Use)

Description Guilherme de Almeida Suckevicz 2019-11-22 20:42:44 UTC
__btrfs_free_extent in fs/btrfs/extent-tree.c in the Linux kernel through 5.3.12 calls btrfs_print_leaf in a certain ENOENT case, which allows local users to obtain potentially sensitive information about register values via the dmesg program.

Reference:
https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19039

Comment 1 Guilherme de Almeida Suckevicz 2019-11-22 20:43:14 UTC
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1775804]


Note You need to log in before you can comment on or make changes to this bug.