Wind River Support Network

HomeDefectsLIN8-11855

Fixed

LIN8-11855 : Security Advisory - linux - CVE-2019-19528

Created: Dec 3, 2019 Updated: Jan 21, 2020

Resolved Date: Jan 21, 2020

Found In Version: 8.0.0.1

Fix Version: 8.0.0.33

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Kernel

Description

In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka CID-edc4746f253d.

CREATE(Triage):(User=admin) [CVE-2019-19528|https://nvd.nist.gov/vuln/detail/CVE-2019-19528]

CVEs

CVE-2019-19528