An issue was discovered in wcd9335_codec_enable_dec in sound/soc/codecs/wcd9335.c in the Linux kernel through 5.1.5. It uses kstrndup instead of kmemdup_nul, which allows attackers to have an unspecified impact via unknown vectors. CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-12454 User=admin}