CVE-2019-17056

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-17056

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-17056.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-17056

Downstream

BELL-CVE-2019-17056

DEBIAN-CVE-2019-17056

DLA-2068-1

DLA-2114-1

SUSE-SU-2019:2879-1

SUSE-SU-2019:2946-1

SUSE-SU-2019:2947-1

SUSE-SU-2019:2949-1

SUSE-SU-2019:2950-1

SUSE-SU-2019:2951-1

SUSE-SU-2019:2952-1

SUSE-SU-2019:2953-1

SUSE-SU-2019:2984-1

SUSE-SU-2019:3200-1

SUSE-SU-2019:3294-1

SUSE-SU-2019:3295-1

SUSE-SU-2020:0093-1

UBUNTU-CVE-2019-17056

USN-4184-1

USN-4185-1

USN-4185-2

USN-4186-1

USN-4186-2

openSUSE-SU-2019:2392-1

openSUSE-SU-2019:2444-1

Related

Published

2019-10-01T14:15:55.773Z

Modified

2026-03-10T22:25:10.753687Z

Severity

3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVSS Calculator

Summary

[none]

Details

llcpsockcreate in net/nfc/llcpsock.c in the AFNFC network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.

References

Affected packages

Git /

Affected ranges

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "5.3.2"
            }
        ]
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-17056.json"