In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka CID-c52873e5a1ef. CREATE(Triage):(User=admin) CVE-2019-19530 (https://nvd.nist.gov/vuln/detail/CVE-2019-19530)