CVE-2019-3016: CVE-2019-3016

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-3016

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

使用共享资源的并发执行不恰当同步问题(竞争条件)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Linux KVM 竞争条件问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux KVM是基于内核的虚拟机。 Linux KVM存在竞争条件问题漏洞。该漏洞源于网络系统或产品在运行过程中，并发代码需要互斥地访问共享资源时，对于并发访问的处理不当。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
linux	linux_kernel	4.10 to 5.6	-

II. Public POCs for CVE-2019-3016

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-3016

Please Login to view more intelligence information

https://bugzilla.redhat.com/show_bug.cgi?id=1792167x_refsource_CONFIRM
https://git.kernel.org/linus/b043138246a41064527cf019a3d51d9f015e9796x_refsource_CONFIRM
https://lore.kernel.org/lkml/1580407316-11391-1-git-send-email-pbonzini%40redhat.com/x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-20200313-0003/x_refsource_CONFIRM
https://git.kernel.org/linus/917248144db5d7320655dbb41d3af0b8a0f3d589x_refsource_CONFIRM
https://git.kernel.org/linus/a6bd811f1209fe1c64c9f6fd578101d6436c6b6ex_refsource_CONFIRM
https://git.kernel.org/linus/1eff70a9abd46f175defafd29bc17ad456f398a7x_refsource_CONFIRM
https://git.kernel.org/linus/8c6de56a42e0c657955e12b882a81ef07d1d073ex_refsource_CONFIRM
https://www.debian.org/security/2020/dsa-4699vendor-advisoryx_refsource_DEBIAN
https://usn.ubuntu.com/4301-1/vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/4300-1/vendor-advisoryx_refsource_UBUNTU
http://www.openwall.com/lists/oss-security/2020/01/30/4mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2019-3016

IV. Related Vulnerabilities

Same product: linux_kernel

CVE-2022-43945
Linux kernel 安全漏洞

Same vendor: linux

Same weakness: CWE-362

V. Comments for CVE-2019-3016

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2019-3016

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-3016

III. Intelligence Information for CVE-2019-3016

IV. Related Vulnerabilities

V. Comments for CVE-2019-3016

Leave a comment