In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79. CREATE(Triage):(User=admin) [CVE-2019-19523|https://nvd.nist.gov/vuln/detail/CVE-2019-19523]