linux linux-kernel CVE-2019-3901 vulnerability in Linux and Other Products
Published on April 22, 2019

product logo product logo product logo
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid programs. As no relevant locks (in particular the cred_guard_mutex) are held during the ptrace_may_access() call, it is possible for the specified target task to perform an execve() syscall with setuid execution before perf_event_alloc() actually attaches to it, allowing an attacker to bypass the ptrace_may_access() check and the perf_event_exit_task(current) call that is performed in install_exec_creds() during privileged execve() calls. This issue affects kernel versions before 4.8.

NVD

Weakness Type

Improper Locking

The software does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.


Products Associated with CVE-2019-3901

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-3901 are published in these products:

Linux Kernel
 
Debian Linux
 
NetApp Vasa Provider Clustered Data Ontap
 
NetApp Solidfire
 
NetApp Hci Management Node
 
NetApp Snapprotect
 
NetApp Active Iq Unified Manager Vmware Vsphere
 
NetApp Virtual Storage Console Vmware Vsphere
 
NetApp Storage Replication Adapter Clustered Data Ontap Vmware Vsphere
 

Affected Versions

The Linux Foundation kernel Version older then 4.8 is affected by CVE-2019-3901

Exploit Probability

EPSS
0.07%
Percentile
21.61%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.