High severity7.8NVD Advisory· Published Dec 8, 2019· Updated Jun 17, 2026
CVE-2019-19448
CVE-2019-19448
Description
In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in try_merge_free_space in fs/btrfs/free-space-cache.c because the pointer to a left data structure can be the same as the pointer to a right data structure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Linux/Linux kerneldescription
Patches
Vulnerability mechanics
References
6- github.com/bobfuzzer/CVE/tree/master/CVE-2019-19448nvdExploitThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/09/msg00025.htmlnvdMailing ListThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/10/msg00032.htmlnvdMailing ListThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/10/msg00034.htmlnvdMailing ListThird Party Advisory
- security.netapp.com/advisory/ntap-20200103-0001/nvdThird Party Advisory
- usn.ubuntu.com/4578-1/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.