Allele Security Alert
ASA-2019-00629
Identifier(s)
ASA-2019-00629, CVE-2019-18680, CID-91573ae4aed0
Title
NULL pointer dereference in rds_tcp_kill_sock()
Vendor(s)
Linux foundation
Product(s)
Linux kernel
Affected version(s)
Linux kernel versions before 4.4.195
Linux kernel versions since the following commit:
net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock()
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=c4e97b06cfdc5213494c22dd5c2b41ff8b15e0ee
Fixed version(s)
Linux kernel version 4.4.195
Linux kernel versions with the following commit applied:
net: rds: Fix NULL ptr use in rds_tcp_kill_sock
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=91573ae4aed0a49660abdad4d42f2a0db995ee5e
Proof of concept
Unknown
Description
There is a NULL pointer dereference in rds_tcp_kill_sock() in net/rds/tcp.c that will cause denial of service.
Technical details
Unknown
Credits
Unknown
Reference(s)
net: rds: Fix NULL ptr use in rds_tcp_kill_sock
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=91573ae4aed0a49660abdad4d42f2a0db995ee5e
net: rds: Fix NULL ptr use in rds_tcp_kill_sock
https://github.com/torvalds/linux/commit/91573ae4aed0a49660abdad4d42f2a0db995ee5e
net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock()
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=c4e97b06cfdc5213494c22dd5c2b41ff8b15e0ee
net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock()
https://github.com/torvalds/linux/commit/c4e97b06cfdc5213494c22dd5c2b41ff8b15e0ee
LKML: Mao Wenan: [PATCH stable 4.4 net] net: rds: Fix NULL ptr use in rds_tcp_kill_sock
https://lkml.org/lkml/2019/9/18/337
ChangeLog-4.4.195
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.195
CVE-2019-18680 - Red Hat Customer Portal
https://access.redhat.com/security/cve/CVE-2019-18680
https://people.canonical.com/~ubuntu-security/cve/CVE-2019-18680.html
CVE-2019-18680 | SUSE
https://www.suse.com/security/cve/CVE-2019-18680
CVE-2019-18680
https://security-tracker.debian.org/tracker/CVE-2019-18680
CVE-2019-18680
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18680
CVE-2019-18680
https://nvd.nist.gov/vuln/detail/CVE-2019-18680
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: December 6, 2019