Unrated severityNVD Advisory· Published Nov 18, 2019· Updated Aug 5, 2024

CVE-2019-19072

Description

A memory leak in the predicate_parse() function in kernel/trace/trace_events_filter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-96c5c6e6a5b6.

Affected products

Linux/Linux kerneldescription
osv-coords
pkg:rpm/almalinux/kernel-tools-libs-devel
Range: < 4.18.0-240.el8

Patches

96c5c6e6a5b6

tracing: Have error path in predicate_parse() free its allocated memory

https://github.com/torvalds/linuxNavid EmamdoostSep 20, 2019via osv

commit

1 file changed · +4 −2

kernel/trace/trace_events_filter.c+4 −2 modified

@@ -452,8 +452,10 @@ predicate_parse(const char *str, int nr_parens, int nr_preds,
 
 		switch (*next) {
 		case '(':					/* #2 */
-			if (top - op_stack > nr_parens)
-				return ERR_PTR(-EINVAL);
+			if (top - op_stack > nr_parens) {
+				ret = -EINVAL;
+				goto out_free;
+			}
 			*(++top) = invert;
 			continue;
 		case '!':					/* #3 */

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3PSDE6PTOTVBK2YTKB2TFQP2SUBVSNF/mitrevendor-advisoryx_refsource_FEDORA
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PY7LJMSPAGRIKABJPDKQDTXYW3L5RX2T/mitrevendor-advisoryx_refsource_FEDORA
usn.ubuntu.com/4225-1/mitrevendor-advisoryx_refsource_UBUNTU
usn.ubuntu.com/4225-2/mitrevendor-advisoryx_refsource_UBUNTU
usn.ubuntu.com/4226-1/mitrevendor-advisoryx_refsource_UBUNTU
github.com/torvalds/linux/commit/96c5c6e6a5b6db592acae039fed54b5c8844cd35mitrex_refsource_MISC
security.netapp.com/advisory/ntap-20191205-0001/mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000