{"id":"CVE-2019-25160","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetlabel: fix out-of-bounds memory accesses\n\nThere are two array out-of-bounds memory accesses, one in\ncipso_v4_map_lvl_valid(), the other in netlbl_bitmap_walk().  Both\nerrors are embarassingly simple, and the fixes are straightforward.\n\nAs a FYI for anyone backporting this patch to kernels prior to v4.8,\nyou'll want to apply the netlbl_bitmap_walk() patch to\ncipso_v4_bitmap_walk() as netlbl_bitmap_walk() doesn't exist before\nLinux v4.8.","modified":"2026-03-15T22:28:12.570460Z","published":"2024-02-26T18:15:06.930Z","related":["SUSE-SU-2024:1643-1","SUSE-SU-2024:1646-1","SUSE-SU-2024:1870-1"],"references":[{"type":"FIX","url":"https://git.kernel.org/stable/c/c61d01faa5550e06794dcf86125ccd325bfad950"},{"type":"FIX","url":"https://git.kernel.org/stable/c/dc18101f95fa6e815f426316b8b9a5cee28a334e"},{"type":"FIX","url":"https://git.kernel.org/stable/c/e3713abc4248aa6bcc11173d754c418b02a62cbb"},{"type":"FIX","url":"https://git.kernel.org/stable/c/fbf9578919d6c91100ec63acf2cba641383f6c78"},{"type":"FIX","url":"https://git.kernel.org/stable/c/fcfe700acdc1c72eab231300e82b962bac2b2b2c"},{"type":"FIX","url":"https://git.kernel.org/stable/c/1c973f9c7cc2b3caae93192fdc8ecb3f0b4ac000"},{"type":"FIX","url":"https://git.kernel.org/stable/c/5578de4834fe0f2a34fedc7374be691443396d1f"},{"type":"FIX","url":"https://git.kernel.org/stable/c/97bc3683c24999ee621d847c9348c75d2fe86272"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-25160.json","unresolved_ranges":[{"events":[{"introduced":"2.6.19"},{"fixed":"3.16.66"}]},{"events":[{"introduced":"3.17.0"},{"fixed":"3.18.137"}]},{"events":[{"introduced":"3.19.0"},{"fixed":"4.4.177"}]},{"events":[{"introduced":"4.5.0"},{"fixed":"4.9.163"}]},{"events":[{"introduced":"4.10.0"},{"fixed":"4.14.106"}]},{"events":[{"introduced":"4.15.0"},{"fixed":"4.19.28"}]},{"events":[{"introduced":"4.20.0"},{"fixed":"4.20.15"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}]}