Vulnerability CVE-2019-19377 in Linux Kernel 5.0.21

The Linux kernel 5.0.21 contains a use after free vulnerability CVE-2019-19377. The vulnerability documented on 29.11.2019 with a CVE number is currently awaiting analysis.


The following tweet mentions to the vulnerability CVE-2019-19377 in the Linux kernel 5.0.21.

The problem: The Linux kernel 5.0.21 has a use-after-free vulnerability which can be exploited by operations like mounting a prepared btrfs file system image, performing some operations and unmounting. The error is in btrfs_queue_work in fs/btrfs/async-thread.c.

Cookies helps to fund this blog: Cookie settings

This entry was posted in Linux, Security and tagged , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *