CVE-2019-14898

Summary

The fix for CVE-2019-11599, affecting the Linux kernel before 5.0.10 was not complete. A local user could use this flaw to obtain sensitive information, cause a denial of service, or possibly have other unspecified impacts by triggering a race condition with mmget_not_zero or get_task_mm calls.

Affected Software

VendorProductVersion RangeStatus
Linux kernelkernel< 5.0.10affected

Weaknesses

  • CWE-362: CWE-362
  • CWE-667: CWE-667

ADP Enrichment

CVE Program Container

Additional References

References