Vulnerability Details CVE-2019-19396
illumos, as used in OmniOS Community Edition before r151030y, allows a kernel crash via an application with multiple threads calling sendmsg concurrently over a single socket, because uts/common/inet/ip/ip_attr.c mishandles conn_ixa dereferences.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 66.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
Products affected by CVE-2019-19396
-
cpe:2.3:o:omniosce:omnios:-
-
cpe:2.3:o:omniosce:omnios:r151022
-
cpe:2.3:o:omniosce:omnios:r151024
-
cpe:2.3:o:omniosce:omnios:r151026
-
cpe:2.3:o:omniosce:omnios:r151028