公告ID: KYLIN-2019-11487
安全等级: 重要
产品: Kylin V3
发布日期: 2019年4月22日
CVE: CVE-2019-11487
CVSS3评分: 7.8
概述:
None 描述:
The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests. 系统版本:
KYLIN 3.0.x
KYLIN 3.2.x
KYLIN 3.3.x
受影响包列表:
kernel
kernel
kernel