{"id":"CVE-2019-20054","details":"In the Linux kernel before 5.0.6, there is a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e.","modified":"2026-03-10T22:40:20.184433Z","published":"2019-12-28T05:15:11.040Z","related":["ALSA-2020:4431","SUSE-SU-2020:0093-1","SUSE-SU-2020:0511-1","SUSE-SU-2020:0559-1","SUSE-SU-2020:0560-1","SUSE-SU-2020:0580-1","SUSE-SU-2020:0584-1","SUSE-SU-2020:0599-1","SUSE-SU-2020:0613-1","SUSE-SU-2020:1255-1","SUSE-SU-2020:1275-1","SUSE-SU-2020:1663-1","openSUSE-SU-2020:0336-1"],"references":[{"type":"WEB"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20200204-0002/"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00021.html"},{"type":"ADVISORY","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11"},{"type":"ADVISORY","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.6"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=23da9588037ecdd4901db76a5b79a42b529c4ec3"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=89189557b47b35683a27c80ee78aef18248eefb4"}],"affected":[{"ranges":[{"events":[{"introduced":"0"},{"fixed":"23da9588037ecdd4901db76a5b79a42b529c4ec3"}]},{"events":[{"introduced":"0"},{"fixed":"89189557b47b35683a27c80ee78aef18248eefb4"}]}],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"5.0.6"}]},{"events":[{"introduced":"11.0"},{"last_affected":"11.70.2"}]},{"events":[{"introduced":"0"},{"fixed":"5.0.6"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-20054.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}