CVE-2019-9213

Name: CVE-2019-9213
Creator: NVD / NIST
Published: 2019-03-05T22:29:00.24+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 5.5/10EPSS 5.67%

Last modified Jun 17, 2026

CVE-2019-9213 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task.. EPSS estimates a 5.67% chance of exploitation in the next 30 days.

Description

In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task.

Metrics

CVSS 3.1

5.5/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

5.67%

92.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-476

Affected Software

Vendor	Product	Versions
Linux	Linux Kernel	>= 4.9, < 4.9.162
Linux	Linux Kernel	>= 4.14, < 4.14.105
Linux	Linux Kernel	>= 4.19, < 4.19.27
Linux	Linux Kernel	>= 4.20, < 4.20.14
Debian	Debian Linux	8.0
Redhat	Enterprise Linux	7.0
Redhat	Enterprise Linux	8.0
Opensuse	Leap	15.0
Opensuse	Leap	42.3
Canonical	Ubuntu Linux	12.04
Canonical	Ubuntu Linux	14.04
Canonical	Ubuntu Linux	16.04
Canonical	Ubuntu Linux	18.10

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0a1d52994d440e21def1c2174932410b4f2a98a1Patch, Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00045.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00052.htmlMailing List, Third Party Advisory
http://packetstormsecurity.com/files/156053/Reliable-Datagram-Sockets-RDS-rds_atomic_free_op-Privilege-Escalation.htmlExploit, Third Party Advisory, VDB Entry
http://www.securityfocus.com/bid/107296Third Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2019:0831Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1479Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1480Third Party Advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1792Exploit, Mailing List, Third Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.105Mailing List, Patch, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.27Mailing List, Patch, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20.14Mailing List, Patch, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.162Mailing List, Patch, Vendor Advisory
https://github.com/torvalds/linux/commit/0a1d52994d440e21def1c2174932410b4f2a98a1Mailing List, Patch, Vendor Advisory
https://lists.debian.org/debian-lts-announce/2019/03/msg00034.htmlMailing List, Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/04/msg00004.htmlMailing List, Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/05/msg00002.htmlMailing List, Third Party Advisory
https://usn.ubuntu.com/3930-1/Third Party Advisory
https://usn.ubuntu.com/3930-2/Third Party Advisory
https://usn.ubuntu.com/3931-1/Third Party Advisory
https://usn.ubuntu.com/3931-2/Third Party Advisory
https://usn.ubuntu.com/3932-1/Third Party Advisory
https://usn.ubuntu.com/3932-2/Third Party Advisory
https://usn.ubuntu.com/3933-1/Third Party Advisory
https://usn.ubuntu.com/3933-2/Third Party Advisory
https://www.exploit-db.com/exploits/46502/Exploit, Third Party Advisory, VDB Entry
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0a1d52994d440e21def1c2174932410b4f2a98a1Patch, Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00045.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00052.htmlMailing List, Third Party Advisory
http://packetstormsecurity.com/files/156053/Reliable-Datagram-Sockets-RDS-rds_atomic_free_op-Privilege-Escalation.htmlExploit, Third Party Advisory, VDB Entry
http://www.securityfocus.com/bid/107296Third Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2019:0831Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1479Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1480Third Party Advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1792Exploit, Mailing List, Third Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.105Mailing List, Patch, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.27Mailing List, Patch, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20.14Mailing List, Patch, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.162Mailing List, Patch, Vendor Advisory
https://github.com/torvalds/linux/commit/0a1d52994d440e21def1c2174932410b4f2a98a1Mailing List, Patch, Vendor Advisory
https://lists.debian.org/debian-lts-announce/2019/03/msg00034.htmlMailing List, Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/04/msg00004.htmlMailing List, Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/05/msg00002.htmlMailing List, Third Party Advisory
https://usn.ubuntu.com/3930-1/Third Party Advisory
https://usn.ubuntu.com/3930-2/Third Party Advisory
https://usn.ubuntu.com/3931-1/Third Party Advisory
https://usn.ubuntu.com/3931-2/Third Party Advisory
https://usn.ubuntu.com/3932-1/Third Party Advisory
https://usn.ubuntu.com/3932-2/Third Party Advisory
https://usn.ubuntu.com/3933-1/Third Party Advisory
https://usn.ubuntu.com/3933-2/Third Party Advisory
https://www.exploit-db.com/exploits/46502/Exploit, Third Party Advisory, VDB Entry

Timeline

Published: Mar 5, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-9213?

How severe is CVE-2019-9213?

CVE-2019-9213 has a CVSS score of 5.5/10 (MEDIUM severity). The EPSS model estimates a 5.67% probability of exploitation in the next 30 days.

How do I fix CVE-2019-9213?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-9213?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST