First published: Tue Aug 06 2019(Updated: )
In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Linux Linux kernel | >=2.6.30<3.16.79 | |
Linux Linux kernel | >=3.17<4.4.190 | |
Linux Linux kernel | >=4.5<4.9.190 | |
Linux Linux kernel | >=4.10<4.14.140 | |
Linux Linux kernel | >=4.15<4.19.68 | |
Linux Linux kernel | >=4.20<5.2.10 | |
Debian Debian Linux | =8.0 | |
openSUSE Leap | =15.1 | |
redhat/kernel-rt | <0:3.10.0-1127.18.2.rt56.1116.el7 | 0:3.10.0-1127.18.2.rt56.1116.el7 |
redhat/kernel | <0:3.10.0-1127.18.2.el7 | 0:3.10.0-1127.18.2.el7 |
redhat/kernel | <0:3.10.0-1062.36.1.el7 | 0:3.10.0-1062.36.1.el7 |
redhat/kernel-rt | <0:4.18.0-147.8.1.rt24.101.el8_1 | 0:4.18.0-147.8.1.rt24.101.el8_1 |
redhat/kernel | <0:4.18.0-147.8.1.el8_1 | 0:4.18.0-147.8.1.el8_1 |
Google Android |
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)