In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e. CREATE(Triage):(User=admin) CVE-2019-19527 (https://nvd.nist.gov/vuln/detail/CVE-2019-19527)