LIN1018-4688 : Security Advisory - linux - CVE-2019-15117
Created: Aug 18, 2019
Updated: Apr 22, 2022
Resolved Date: Dec 15, 2019
Found In Version: 10.18.44.1
Fix Version: 10.18.44.14
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace
Description
parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
CREATE(Triage):(User=admin) CVE-2019-15117 (https://nvd.nist.gov/vuln/detail/CVE-2019-15117)