{"id":"CVE-2019-16995","details":"In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.","modified":"2026-04-02T01:40:45.689865Z","published":"2019-09-30T13:15:11.073Z","related":["SUSE-SU-2019:2946-1","SUSE-SU-2019:2947-1","SUSE-SU-2019:2949-1","SUSE-SU-2019:2951-1","SUSE-SU-2019:2952-1","SUSE-SU-2019:2953-1","SUSE-SU-2019:2984-1","SUSE-SU-2019:3200-1","SUSE-SU-2019:3294-1","SUSE-SU-2019:3295-1","SUSE-SU-2020:0093-1","openSUSE-SU-2019:2444-1","openSUSE-SU-2019:2503-1"],"references":[{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20191031-0005/"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00010.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html"},{"type":"FIX","url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6caabe7f197d3466d238f70915d65301f1716626"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/6caabe7f197d3466d238f70915d65301f1716626"},{"type":"EVIDENCE","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.3"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"6caabe7f197d3466d238f70915d65301f1716626"}]},{"type":"GIT","repo":"https://github.com/torvalds/linux","events":[{"introduced":"0"},{"last_affected":"9e98c678c2d6ae3a17cb2de55d17f69dddaa231b"},{"fixed":"6caabe7f197d3466d238f70915d65301f1716626"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"5.1-rc1"}]}}],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"3.17"},{"fixed":"3.18.137"}]},{"events":[{"introduced":"4.4"},{"fixed":"4.4.177"}]},{"events":[{"introduced":"4.9"},{"fixed":"4.9.164"}]},{"events":[{"introduced":"4.14"},{"fixed":"4.14.107"}]},{"events":[{"introduced":"4.19"},{"fixed":"4.19.30"}]},{"events":[{"introduced":"4.20"},{"fixed":"4.20.17"}]},{"events":[{"introduced":"5.0"},{"fixed":"5.0.3"}]},{"events":[{"introduced":"0"},{"last_affected":"15.0"}]},{"events":[{"introduced":"0"},{"last_affected":"15.1"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16995.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}