CVE-2019-15794

Name: CVE-2019-15794
Creator: NVD / NIST
Published: 2020-04-24T00:15:11.933+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 6.7/10EPSS 1.16%

Last modified Jun 17, 2026

CVE-2019-15794 is a medium-severity vulnerability rated 6.7/10 on the CVSS scale. Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma->vm_file in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vm_file points. EPSS estimates a 1.16% chance of exploitation in the next 30 days.

Description

Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma->vm_file in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vm_file points. On upstream kernels this is not an issue, as no callers dereference vm_file following after call_mmap() returns an error. However, the aufs patchs change mmap_region() to replace the fput() using a local variable with vma_fput(), which will fput() vm_file, leading to a refcount underflow.

Metrics

CVSS 3.1

6.7/10

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

1.16%

63.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Linux	Linux Kernel	5.0
Linux	Linux Kernel	5.3
Canonical	Ubuntu Linux	18.04
Canonical	Ubuntu Linux	19.10

References

https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/eoan/commit/?id=270d16ae48a4dbf1c7e25e94cc3e38b4bea37635Mailing List, Patch, Third Party Advisory
https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/eoan/commit/?id=ef81780548d20a786cc77ed4203fca146fd81ce3Mailing List, Patch, Third Party Advisory
https://usn.ubuntu.com/usn/usn-4208-1Third Party Advisory
https://usn.ubuntu.com/usn/usn-4209-1Third Party Advisory
https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/eoan/commit/?id=270d16ae48a4dbf1c7e25e94cc3e38b4bea37635Mailing List, Patch, Third Party Advisory
https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/eoan/commit/?id=ef81780548d20a786cc77ed4203fca146fd81ce3Mailing List, Patch, Third Party Advisory
https://usn.ubuntu.com/usn/usn-4208-1Third Party Advisory
https://usn.ubuntu.com/usn/usn-4209-1Third Party Advisory

Timeline

Published: Apr 24, 2020
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-15794?

How severe is CVE-2019-15794?

CVE-2019-15794 has a CVSS score of 6.7/10 (MEDIUM severity). The EPSS model estimates a 1.16% probability of exploitation in the next 30 days.

How do I fix CVE-2019-15794?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-15794?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST