netapp active-iq-performance-analytics-services CVE-2019-15902 vulnerability in NetApp and Other Products
Published on September 4, 2019

product logo product logo product logo product logo
A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD


Products Associated with CVE-2019-15902

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-15902 are published in these products:

NetApp Active Iq Performance Analytics Services
 
NetApp Service Processor
 
Debian Linux
 
Linux Kernel
 
OpenSuse Leap
 

Exploit Probability

EPSS
0.09%
Percentile
25.08%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.