CVE-2019-3460 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	ADJACENT_NETWORK	LOW	NONE	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 64%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	𝑥 ≤ 5.1
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	18.10
debian	debian_linux	8.0
redhat	codeready_linux_builder	8.0
redhat	virtualization_host	4.0
redhat	enterprise_linux	8.0
redhat	enterprise_linux_desktop	7.0
redhat	enterprise_linux_eus	8.1
redhat	enterprise_linux_eus	8.2
redhat	enterprise_linux_eus	8.4
redhat	enterprise_linux_for_real_time_for_nfv_tus	8.2
redhat	enterprise_linux_for_real_time_for_nfv_tus	8.4
redhat	enterprise_linux_for_real_time_tus	8.2
redhat	enterprise_linux_for_real_time_tus	8.4
redhat	enterprise_linux_server	7.0
redhat	enterprise_linux_server_aus	8.2
redhat	enterprise_linux_server_aus	8.4
redhat	enterprise_linux_server_tus	8.2
redhat	enterprise_linux_server_tus	8.4
redhat	enterprise_linux_workstation	7.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.106-3 fixed
bookworm (security)	6.1.112-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.226-1 fixed
sid	6.11.6-1 fixed
trixie	6.11.5-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

linux

bionic	Fixed 4.15.0-47.50 released
cosmic	Fixed 4.18.0-17.18 released
disco	not-affected
trusty	Fixed 3.13.0-168.218 released
xenial	Fixed 4.4.0-145.171 released

linux-aws

bionic	Fixed 4.15.0-1035.37 released
cosmic	Fixed 4.18.0-1012.14 released
disco	not-affected
trusty	Fixed 4.4.0-1040.43 released
xenial	Fixed 4.4.0-1079.89 released

linux-aws-hwe

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-1035.37~16.04.1 released

linux-azure

bionic	Fixed 4.18.0-1014.14~18.04.1 released
cosmic	Fixed 4.18.0-1014.14 released
disco	not-affected
trusty	Fixed 4.15.0-1041.45~14.04.1 released
xenial	Fixed 4.15.0-1041.45 released

linux-azure-edge

bionic	Fixed 4.18.0-1014.14~18.04.1 released
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-1041.45 released

linux-euclid

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-flo

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-gcp

bionic	Fixed 4.15.0-1029.31 released
cosmic	Fixed 4.18.0-1008.9 released
disco	not-affected
trusty	dne
xenial	Fixed 4.15.0-1029.31~16.04.1 released

linux-gcp-edge

bionic	Fixed 4.18.0-1008.9~18.04.1 released
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-gke

bionic	not-affected
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-goldfish

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-grouper

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-hwe

bionic	Fixed 4.18.0-17.18~18.04.1 released
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-47.50~16.04.1 released

linux-hwe-edge

bionic	not-affected
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-47.50~16.04.1 released

linux-kvm

bionic	Fixed 4.15.0-1031.31 released
cosmic	Fixed 4.18.0-1009.9 released
disco	not-affected
trusty	dne
xenial	Fixed 4.4.0-1043.49 released

linux-lts-trusty

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-lts-utopic

bionic	dne
cosmic	dne
disco	dne
trusty	ignored
xenial	dne

linux-lts-vivid

bionic	dne
cosmic	dne
disco	dne
trusty	ignored
xenial	dne

linux-lts-wily

bionic	dne
cosmic	dne
disco	dne
trusty	ignored
xenial	dne

linux-lts-xenial

bionic	dne
cosmic	dne
disco	dne
trusty	Fixed 4.4.0-144.170~14.04.1 released
xenial	dne

linux-maguro

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-mako

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-manta

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-oem

bionic	Fixed 4.15.0-1035.40 released
cosmic	Fixed 4.15.0-1035.40 released
disco	not-affected
trusty	dne
xenial	ignored

linux-oracle

bionic	Fixed 4.15.0-1010.12 released
cosmic	Fixed 4.15.0-1010.12 released
disco	not-affected
trusty	dne
xenial	Fixed 4.15.0-1010.12~16.04.1 released

linux-raspi2

bionic	Fixed 4.15.0-1033.35 released
cosmic	Fixed 4.18.0-1011.13 released
disco	not-affected
trusty	dne
xenial	Fixed 4.4.0-1106.114 released

linux-snapdragon

bionic	Fixed 4.15.0-1053.57 released
cosmic	dne
disco	not-affected
trusty	dne
xenial	Fixed 4.4.0-1110.115 released

openSUSE / SLES Releases

openSUSE Product

Release

kernel-azure

suse enterprise sap 12 SP3	4.4.176-4.25.1 fixed
suse enterprise sap 12 SP4	4.12.14-6.9.1 fixed
suse enterprise sap 15	4.12.14-5.24.1 fixed
suse enterprise server 12 SP3	4.4.176-4.25.1 fixed
suse enterprise server 12 SP4	4.12.14-6.9.1 fixed
suse enterprise server 15	4.12.14-5.24.1 fixed

kernel-azure-base

suse enterprise sap 12 SP3	4.4.176-4.25.1 fixed
suse enterprise sap 12 SP4	4.12.14-6.9.1 fixed
suse enterprise sap 15	4.12.14-5.24.1 fixed
suse enterprise sap 15 SP2	4.12.14-8.30.1 fixed
suse enterprise sap 15 SP3	4.12.14-8.58.1 fixed
suse enterprise server 12 SP3	4.4.176-4.25.1 fixed
suse enterprise server 12 SP4	4.12.14-6.9.1 fixed
suse enterprise server 15	4.12.14-5.24.1 fixed
suse enterprise server 15 SP2	4.12.14-8.30.1 fixed
suse enterprise server 15 SP3	4.12.14-8.58.1 fixed

kernel-default

suse enterprise desktop 15	4.12.14-150.14.2 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 12 SP3	4.4.175-94.79.1 fixed
suse enterprise sap 12 SP4	4.12.14-95.13.1 fixed
suse enterprise sap 15	4.12.14-150.14.2 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP2	4.4.121-92.101.1 fixed
suse enterprise server 12 SP3	4.4.175-94.79.1 fixed
suse enterprise server 12 SP4	4.12.14-95.13.1 fixed
suse enterprise server 15	4.12.14-150.14.2 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kernel-default-base

suse enterprise desktop 15	4.12.14-150.14.2 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 12 SP3	4.4.175-94.79.1 fixed
suse enterprise sap 12 SP4	4.12.14-95.13.1 fixed
suse enterprise sap 15	4.12.14-150.14.2 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP2	4.4.121-92.101.1 fixed
suse enterprise server 12 SP3	4.4.175-94.79.1 fixed
suse enterprise server 12 SP4	4.12.14-95.13.1 fixed
suse enterprise server 15	4.12.14-150.14.2 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kernel-default-man

suse enterprise desktop 15	4.12.14-150.14.2 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise desktop 15 SP2	4.12.14-197.40.1 fixed
suse enterprise sap 12 SP3	4.4.175-94.79.1 fixed
suse enterprise sap 12 SP4	4.12.14-95.13.1 fixed
suse enterprise sap 15	4.12.14-150.14.2 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 15 SP2	4.12.14-197.40.1 fixed
suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP2	4.4.121-92.101.1 fixed
suse enterprise server 12 SP3	4.4.175-94.79.1 fixed
suse enterprise server 12 SP4	4.12.14-95.13.1 fixed
suse enterprise server 15	4.12.14-150.14.2 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed
suse enterprise server 15 SP2	4.12.14-197.40.1 fixed

kernel-docs

suse enterprise desktop 15	4.12.14-150.14.1 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 15	4.12.14-150.14.1 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 15	4.12.14-150.14.1 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kernel-ec2

suse enterprise sap 12	3.12.74-60.64.110.1 fixed
suse enterprise sap 12 SP3	3.12.74-60.64.110.1 fixed
suse enterprise sap 12 SP4	3.12.74-60.64.110.1 fixed
suse enterprise sap 12 SP5	3.12.74-60.64.110.1 fixed
suse enterprise server 12	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP3	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP4	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP5	3.12.74-60.64.110.1 fixed

kernel-ec2-extra

suse enterprise sap 12	3.12.74-60.64.110.1 fixed
suse enterprise sap 12 SP3	3.12.74-60.64.110.1 fixed
suse enterprise sap 12 SP4	3.12.74-60.64.110.1 fixed
suse enterprise sap 12 SP5	3.12.74-60.64.110.1 fixed
suse enterprise server 12	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP3	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP4	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP5	3.12.74-60.64.110.1 fixed

kernel-macros

suse enterprise desktop 15	4.12.14-150.14.1 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 12 SP3	4.4.175-94.79.1 fixed
suse enterprise sap 12 SP4	4.12.14-95.13.1 fixed
suse enterprise sap 15	4.12.14-150.14.1 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP2	4.4.121-92.101.1 fixed
suse enterprise server 12 SP3	4.4.175-94.79.1 fixed
suse enterprise server 12 SP4	4.12.14-95.13.1 fixed
suse enterprise server 15	4.12.14-150.14.1 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kernel-obs-build

suse enterprise desktop 15	4.12.14-150.14.2 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 15	4.12.14-150.14.2 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 15	4.12.14-150.14.2 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kernel-source

suse enterprise desktop 15	4.12.14-150.14.1 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 12 SP3	4.4.175-94.79.1 fixed
suse enterprise sap 12 SP4	4.12.14-95.13.1 fixed
suse enterprise sap 15	4.12.14-150.14.1 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP2	4.4.121-92.101.1 fixed
suse enterprise server 12 SP3	4.4.175-94.79.1 fixed
suse enterprise server 12 SP4	4.12.14-95.13.1 fixed
suse enterprise server 15	4.12.14-150.14.1 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kernel-source-azure

suse enterprise sap 12 SP3	4.4.176-4.25.1 fixed
suse enterprise sap 12 SP4	4.12.14-6.9.1 fixed
suse enterprise sap 15	4.12.14-5.24.1 fixed
suse enterprise sap 15 SP2	4.12.14-5.24.1 fixed
suse enterprise sap 15 SP3	4.12.14-5.24.1 fixed
suse enterprise server 12 SP3	4.4.176-4.25.1 fixed
suse enterprise server 12 SP4	4.12.14-6.9.1 fixed
suse enterprise server 15	4.12.14-5.24.1 fixed
suse enterprise server 15 SP2	4.12.14-5.24.1 fixed
suse enterprise server 15 SP3	4.12.14-5.24.1 fixed

kernel-syms

suse enterprise desktop 15	4.12.14-150.14.1 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 12 SP3	4.4.175-94.79.1 fixed
suse enterprise sap 12 SP4	4.12.14-95.13.1 fixed
suse enterprise sap 15	4.12.14-150.14.1 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed
suse enterprise server 12 SP2	4.4.121-92.101.1 fixed
suse enterprise server 12 SP3	4.4.175-94.79.1 fixed
suse enterprise server 12 SP4	4.12.14-95.13.1 fixed
suse enterprise server 15	4.12.14-150.14.1 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kernel-syms-azure

suse enterprise sap 12 SP3	4.4.176-4.25.1 fixed
suse enterprise sap 12 SP4	4.12.14-6.9.1 fixed
suse enterprise sap 15	4.12.14-5.24.1 fixed
suse enterprise server 12 SP3	4.4.176-4.25.1 fixed
suse enterprise server 12 SP4	4.12.14-6.9.1 fixed
suse enterprise server 15	4.12.14-5.24.1 fixed

kernel-vanilla-base

suse enterprise desktop 15	4.12.14-150.14.2 fixed
suse enterprise sap 15	4.12.14-150.14.2 fixed
suse enterprise server 15	4.12.14-150.14.2 fixed

kernel-xen

suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed

kernel-xen-base

suse enterprise server 12	3.12.61-52.149.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.110.1 fixed

kernel-zfcpdump

suse enterprise desktop 15	4.12.14-150.14.2 fixed
suse enterprise desktop 15 SP1	4.12.14-195.1 fixed
suse enterprise sap 15	4.12.14-150.14.2 fixed
suse enterprise sap 15 SP1	4.12.14-195.1 fixed
suse enterprise server 15	4.12.14-150.14.2 fixed
suse enterprise server 15 SP1	4.12.14-195.1 fixed

kgraft-patch-3_12_61-52_149-default-1

suse enterprise server 12

1.3.1

fixed

kgraft-patch-3_12_61-52_149-xen-1

suse enterprise server 12

1.3.1

fixed

kgraft-patch-3_12_74-60_64_110-default-1

suse enterprise server 12 SP1

2.3.1

fixed

kgraft-patch-3_12_74-60_64_110-xen-1

suse enterprise server 12 SP1

2.3.1

fixed

kgraft-patch-4_4_121-92_101-default-1

suse enterprise server 12 SP2

3.3.1

fixed

lttng-modules

suse enterprise server 12 SP1

2.7.0-4.4.1

fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

bpftool

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-abi-whitelists

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-bootwrapper

RHEL 7

0:3.10.0-1062.el7

fixed

kernel-core

RHEL 8

0:4.18.0-147.el8

fixed

kernel-debug

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-debug-core

RHEL 8

0:4.18.0-147.el8

fixed

kernel-debug-devel

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-debug-modules

RHEL 8

0:4.18.0-147.el8

fixed

kernel-debug-modules-extra

RHEL 8

0:4.18.0-147.el8

fixed

kernel-devel

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-doc

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-kdump

RHEL 7

0:3.10.0-1062.el7

fixed

kernel-kdump-devel

RHEL 7

0:3.10.0-1062.el7

fixed

kernel-modules

RHEL 8

0:4.18.0-147.el8

fixed

kernel-modules-extra

RHEL 8

0:4.18.0-147.el8

fixed

kernel-rt

RHEL 7	0:3.10.0-1062.rt56.1022.el7 fixed
RHEL 8	0:4.18.0-147.rt24.93.el8 fixed

kernel-rt-core

RHEL 8

0:4.18.0-147.rt24.93.el8

fixed

kernel-rt-debug

RHEL 7	0:3.10.0-1062.rt56.1022.el7 fixed
RHEL 8	0:4.18.0-147.rt24.93.el8 fixed

kernel-rt-debug-core

RHEL 8

0:4.18.0-147.rt24.93.el8

fixed

kernel-rt-debug-devel

RHEL 7	0:3.10.0-1062.rt56.1022.el7 fixed
RHEL 8	0:4.18.0-147.rt24.93.el8 fixed

kernel-rt-debug-kvm

RHEL 7	0:3.10.0-1062.rt56.1022.el7 fixed
RHEL 8	0:4.18.0-147.rt24.93.el8 fixed

kernel-rt-debug-modules

RHEL 8

0:4.18.0-147.rt24.93.el8

fixed

kernel-rt-debug-modules-extra

RHEL 8

0:4.18.0-147.rt24.93.el8

fixed

kernel-rt-devel

RHEL 7	0:3.10.0-1062.rt56.1022.el7 fixed
RHEL 8	0:4.18.0-147.rt24.93.el8 fixed

kernel-rt-doc

RHEL 7

0:3.10.0-1062.rt56.1022.el7

fixed

kernel-rt-kvm

RHEL 7	0:3.10.0-1062.rt56.1022.el7 fixed
RHEL 8	0:4.18.0-147.rt24.93.el8 fixed

kernel-rt-modules

RHEL 8

0:4.18.0-147.rt24.93.el8

fixed

kernel-rt-modules-extra

RHEL 8

0:4.18.0-147.rt24.93.el8

fixed

kernel-rt-trace

RHEL 7

0:3.10.0-1062.rt56.1022.el7

fixed

kernel-rt-trace-devel

RHEL 7

0:3.10.0-1062.rt56.1022.el7

fixed

kernel-rt-trace-kvm

RHEL 7

0:3.10.0-1062.rt56.1022.el7

fixed

kernel-tools

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-tools-libs

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-tools-libs-devel

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

kernel-zfcpdump

RHEL 8

0:4.18.0-147.el8

fixed

kernel-zfcpdump-core

RHEL 8

0:4.18.0-147.el8

fixed

kernel-zfcpdump-devel

RHEL 8

0:4.18.0-147.el8

fixed

kernel-zfcpdump-modules

RHEL 8

0:4.18.0-147.el8

fixed

kernel-zfcpdump-modules-extra

RHEL 8

0:4.18.0-147.el8

fixed

perf

RHEL 7	0:3.10.0-1062.el7 fixed
RHEL 8	0:4.18.0-147.el8 fixed

python-perf

RHEL 7

0:3.10.0-1062.el7

fixed

python3-perf

RHEL 8

0:4.18.0-147.el8

fixed

Known Exploits!

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://www.openwall.com/lists/oss-security/2019/06/27/2

http://www.openwall.com/lists/oss-security/2019/06/27/7

http://www.openwall.com/lists/oss-security/2019/06/28/1

http://www.openwall.com/lists/oss-security/2019/06/28/2

http://www.openwall.com/lists/oss-security/2019/08/12/1

https://access.redhat.com/errata/RHSA-2019:2029

https://access.redhat.com/errata/RHSA-2019:2043

https://access.redhat.com/errata/RHSA-2019:3309

https://access.redhat.com/errata/RHSA-2019:3517

https://access.redhat.com/errata/RHSA-2020:0740

https://bugzilla.redhat.com/show_bug.cgi?id=1663179

https://git.kernel.org/linus/af3d5d1c87664a4f150fcf3534c6567cb19909b0

https://lists.debian.org/debian-lts-announce/2019/05/msg00002.html

https://lists.debian.org/debian-lts-announce/2019/05/msg00041.html

https://lists.debian.org/debian-lts-announce/2019/05/msg00042.html

https://lore.kernel.org/linux-bluetooth/20190110062917.GB15047%40kroah.com/

https://marc.info/?l=oss-security&m=154721580222522&w=2

https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-3460.html

http://www.openwall.com/lists/oss-security/2019/06/27/2

http://www.openwall.com/lists/oss-security/2019/06/27/7

http://www.openwall.com/lists/oss-security/2019/06/28/1

http://www.openwall.com/lists/oss-security/2019/06/28/2

http://www.openwall.com/lists/oss-security/2019/08/12/1

https://access.redhat.com/errata/RHSA-2019:2029

https://access.redhat.com/errata/RHSA-2019:2043

https://access.redhat.com/errata/RHSA-2019:3309

https://access.redhat.com/errata/RHSA-2019:3517

https://access.redhat.com/errata/RHSA-2020:0740

https://bugzilla.redhat.com/show_bug.cgi?id=1663179

https://git.kernel.org/linus/af3d5d1c87664a4f150fcf3534c6567cb19909b0

https://lists.debian.org/debian-lts-announce/2019/05/msg00002.html

https://lists.debian.org/debian-lts-announce/2019/05/msg00041.html

https://lists.debian.org/debian-lts-announce/2019/05/msg00042.html

https://lore.kernel.org/linux-bluetooth/20190110062917.GB15047%40kroah.com/

https://marc.info/?l=oss-security&m=154721580222522&w=2

https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-3460.html