Acknowledged
Created: Nov 19, 2019
Updated: Dec 1, 2019
Found In Version: 7.0.0.1
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel
A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures, aka CID-a7b2df76b42b.
CREATE(Triage):(User=admin) [CVE-2019-19054|https://nvd.nist.gov/vuln/detail/CVE-2019-19054]
