Latest netapp data availability services Vulnerabilities

CVE-2020-9391
An issue was discovered in the Linux kernel 5.4 and 5.5 through 5.5.6 on the AArch64 architecture. It ignores the top byte in the address passed to the brk system call, potentially moving the memory b...
Linux Linux kernel>=5.5<=5.5.6
Linux Linux kernel=5.4
Fedoraproject Fedora=31
Netapp Active Iq Unified Manager Vmware Vsphere
Netapp Cloud Backup
Netapp Data Availability Services
and 5 more
CVE-2019-17569
Apache Tomcat is vulnerable to HTTP request smuggling, caused by a flaw when handling unusual Transfer-Encoding HTTP header. By sending a specially-crafted request, an attacker could exploit this vuln...
redhat/jws5-tomcat<0:9.0.30-3.redhat_4.1.el6
redhat/jws5-tomcat-native<0:1.2.23-4.redhat_4.el6
redhat/jws5-tomcat<0:9.0.30-3.redhat_4.1.el7
redhat/jws5-tomcat-native<0:1.2.23-4.redhat_4.el7
redhat/jws5-tomcat<0:9.0.30-3.redhat_4.1.el8
redhat/jws5-tomcat-native<0:1.2.23-4.redhat_4.el8
and 30 more
CVE-2020-1935
Apache Tomcat is vulnerable to HTTP request smuggling, caused by a flaw when handling unusual Transfer-Encoding HTTP header. By sending a specially-crafted request, an attacker could exploit this vuln...
redhat/tomcat<0:7.0.76-16.el7_9
redhat/tomcat<0:7.0.76-11.el7_6
redhat/tomcat<0:7.0.76-12.el7_7
redhat/tomcat7<0:7.0.70-41.ep7.el6
redhat/tomcat8<0:8.0.36-45.ep7.el6
redhat/tomcat7<0:7.0.70-41.ep7.el7
and 75 more
CVE-2020-9383
An issue was discovered in the Linux kernel 3.16 through 5.5.6. set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before as...
redhat/kernel-rt<0:3.10.0-1160.rt56.1131.el7
redhat/kernel-alt<0:4.14.0-115.21.2.el7a
redhat/kernel<0:3.10.0-1160.el7
ubuntu/linux<4.15.0-99.100
ubuntu/linux<5.3.0-51.44
ubuntu/linux<5.6~
and 88 more
CVE-2020-8992
ext4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows attackers to cause a denial of service (soft lockup) via a crafted journal size.
ubuntu/linux<4.15.0-96.97
ubuntu/linux<5.3.0-51.44
ubuntu/linux<5.6~
ubuntu/linux<4.4.0-185.215
ubuntu/linux-aws<4.15.0-1065.69
ubuntu/linux-aws<5.3.0-1017.18
and 81 more
CVE-2020-5398
A flaw was found in springframework in versions prior to 5.0.16, 5.1.13, and 5.2.3. A reflected file download (RFD) attack is possible when a "Content-Disposition" header is set in response to where t...
IBM Data Risk Manager<=2.0.6
redhat/springframework<5.2.3
redhat/springframework<5.1.13
redhat/springframework<5.0.16
maven/org.springframework:spring-webflux>=5.0.0.RELEASE<5.0.16.RELEASE
maven/org.springframework:spring-webflux>=5.1.0.RELEASE<5.1.13.RELEASE
and 67 more
CVE-2019-20095
A flaw was found in the Linux kernel's mwifiex driver implementation when connecting to other WiFi devices in "Test Mode." A kernel memory leak can occur if an error condition is met during the parame...
redhat/kernel-rt<0:3.10.0-1160.rt56.1131.el7
redhat/kernel-alt<0:4.14.0-115.19.1.el7a
redhat/kernel<0:3.10.0-1160.el7
Linux Linux kernel<5.1.6
openSUSE Leap=15.1
Netapp Active Iq Unified Manager Vmware Vsphere
and 16 more
CVE-2019-20054
A flaw was found in the Linux kernel’s implementation of dropping sysctl entries. A local attacker who has access to load modules on the system can trigger a condition during module load failure and p...
redhat/kernel-rt<0:3.10.0-1160.rt56.1131.el7
redhat/kernel-alt<0:4.14.0-115.19.1.el7a
redhat/kernel<0:3.10.0-1160.el7
redhat/kernel-rt<0:4.18.0-240.rt7.54.el8
redhat/kernel<0:4.18.0-240.el8
Linux Linux kernel<5.0.6
and 16 more
CVE-2019-19966
In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.
Linux Linux kernel<5.1.6
Debian Debian Linux=8.0
openSUSE Leap=15.1
Netapp Active Iq Unified Manager Vmware Vsphere
Netapp Cloud Backup
Netapp Data Availability Services
and 7 more
CVE-2019-19965
In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race c...
ubuntu/linux<4.15.0-88.88
ubuntu/linux<5.3.0-40.32
ubuntu/linux<5.5~
ubuntu/linux<4.4.0-174.204
ubuntu/linux-aws<4.15.0-1060.62
ubuntu/linux-aws<5.3.0-1011.12
and 100 more
CVE-2019-19947
In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c.
ubuntu/linux<4.15.0-115.116
ubuntu/linux<5.3.0-40.32
ubuntu/linux<5.5~
ubuntu/linux<4.4.0-186.216
ubuntu/linux-aws<4.15.0-1080.84
ubuntu/linux-aws<5.3.0-1011.12
and 87 more
CVE-2019-19922
kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quota_us is used (e.g., with Kubernetes), allows attackers to cause a denial of service against non-cpu-bound applications by generat...
redhat/kernel-alt<0:4.14.0-115.19.1.el7a
redhat/kernel-rt<0:4.18.0-193.rt13.51.el8
redhat/kernel<0:4.18.0-193.el8
ubuntu/linux<4.15.0-69.78
ubuntu/linux<5.0.0-38.41
ubuntu/linux<5.3.0-24.26
and 79 more
CVE-2019-19816
In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image and performing some operations can cause slab-out-of-bounds write access in __btrfs_map_block in fs/btrfs/volumes.c, because a val...
ubuntu/linux<4.15.0-109.110
ubuntu/linux<5.2~
ubuntu/linux<4.4.0-201.233
ubuntu/linux-aws<4.15.0-1077.81
ubuntu/linux-aws<4.4.0-1085.89
ubuntu/linux-aws<5.2~
and 95 more
CVE-2019-19813
In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in __mutex_lock in kernel/locking/m...
ubuntu/linux<4.15.0-109.110
ubuntu/linux<5.2~
ubuntu/linux<4.4.0-201.233
ubuntu/linux-aws<4.15.0-1077.81
ubuntu/linux-aws<4.4.0-1085.89
ubuntu/linux-aws<5.2~
and 91 more
CVE-2019-5108
An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for station...
redhat/kernel-rt<0:3.10.0-1127.19.1.rt56.1116.el7
redhat/kernel<0:3.10.0-1127.el7
redhat/kernel-alt<0:4.14.0-115.19.1.el7a
redhat/kernel-rt<0:4.18.0-193.rt13.51.el8
redhat/kernel<0:4.18.0-193.el8
ubuntu/linux<4.15.0-88.88
and 91 more
CVE-2019-19447
In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orph...
redhat/kernel-rt<0:3.10.0-1160.rt56.1131.el7
redhat/kernel-alt<0:4.14.0-115.21.2.el7a
redhat/kernel<0:3.10.0-1160.el7
redhat/kernel<0:3.10.0-693.81.1.el7
redhat/kernel<0:3.10.0-957.65.1.el7
redhat/kernel<0:3.10.0-1062.40.1.el7
and 15 more
CVE-2019-19448
In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in try_merge_free_space ...
ubuntu/linux-gke<5.9~
ubuntu/linux-aws-5.8<5.9~
ubuntu/linux-azure-5.8<5.9~
ubuntu/linux-gcp-5.8<5.9~
ubuntu/linux-oracle-5.8<5.9~
ubuntu/linux-riscv-5.8<5.9~
and 152 more
CVE-2019-19318
In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem.c) rwsem_owner_flags ...
ubuntu/linux<5.3.0-22.24
ubuntu/linux<5.4~
ubuntu/linux-aws<5.3.0-1007.8
ubuntu/linux-aws<5.4~
ubuntu/linux-aws-5.0<5.4~
ubuntu/linux-aws-5.3<5.4~
and 66 more
CVE-2019-19053
A memory leak in the rpmsg_eptdev_write_iter() function in drivers/rpmsg/rpmsg_char.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggerin...
ubuntu/linux<5.3.0-42.34
ubuntu/linux<5.5~
ubuntu/linux-aws<5.3.0-1013.14
ubuntu/linux-aws<5.5~
ubuntu/linux-aws-5.0<5.0.0-1027.30
ubuntu/linux-aws-5.0<5.5~
and 80 more
CVE-2019-19060
A memory leak in the adis_update_scan_mode() function in drivers/iio/imu/adis_buffer.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-ab61...
ubuntu/linux<4.15.0-72.81
ubuntu/linux<5.0.0-38.41
ubuntu/linux<5.3.0-24.26
ubuntu/linux<5.4~
ubuntu/linux<4.4.0-179.209
ubuntu/linux-aws<4.15.0-1056.58
and 116 more
CVE-2019-19063
Two memory leaks in the rtl_usb_probe() function in drivers/net/wireless/realtek/rtlwifi/usb.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption), aka...
redhat/kernel-rt<0:3.10.0-1160.rt56.1131.el7
redhat/kernel<0:3.10.0-1160.el7
redhat/kernel-rt<0:4.18.0-240.rt7.54.el8
redhat/kernel<0:4.18.0-240.el8
ubuntu/linux<4.15.0-88.88
ubuntu/linux<5.3.0-40.32
and 116 more
CVE-2019-19044
Two memory leaks in the v3d_submit_cl_ioctl() function in drivers/gpu/drm/v3d/v3d_gem.c in the Linux kernel before 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggerin...
ubuntu/linux<5.3.0-26.28
ubuntu/linux<5.4~
ubuntu/linux-aws<5.3.0-1009.10
ubuntu/linux-aws<5.4~
ubuntu/linux-aws-5.0<5.4~
ubuntu/linux-aws-hwe<5.4~
and 69 more
CVE-2019-19061
A memory leak in the adis_update_scan_mode_burst() function in drivers/iio/imu/adis_buffer.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CI...
ubuntu/linux<4.15.0-118.119
ubuntu/linux<5.3.0-24.26
ubuntu/linux<5.4~
ubuntu/linux<4.4.0-207.239
ubuntu/linux-aws<4.15.0-1083.87
ubuntu/linux-aws<5.3.0-1008.9
and 115 more
CVE-2019-19054
A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by trig...
ubuntu/linux<4.15.0-118.119
ubuntu/linux<5.4.0-48.52
ubuntu/linux<5.5~
ubuntu/linux<4.4.0-190.220
ubuntu/linux-aws<4.15.0-1083.87
ubuntu/linux-aws<5.4.0-1025.25
and 129 more
CVE-2019-19050
A memory leak in the crypto_reportstat() function in crypto/crypto_user_stat.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypt...
ubuntu/linux<5.3.0-40.32
ubuntu/linux<5.5~
ubuntu/linux-aws<5.3.0-1011.12
ubuntu/linux-aws<5.5~
ubuntu/linux-aws-5.0<5.0.0-1024.27~18.04.1
ubuntu/linux-aws-5.0<5.5~
and 79 more
CVE-2019-19057
Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory con...
redhat/kernel-rt<0:4.18.0-193.rt13.51.el8
redhat/kernel<0:4.18.0-193.el8
ubuntu/linux<4.15.0-88.88
ubuntu/linux<5.3.0-40.32
ubuntu/linux<5.5~
ubuntu/linux<4.4.0-173.203
and 113 more
CVE-2019-19052
A memory leak in the gs_can_open() function in drivers/net/can/usb/gs_usb.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submi...
ubuntu/linux<4.15.0-74.84
ubuntu/linux<5.0.0-38.41
ubuntu/linux<5.3.0-26.28
ubuntu/linux<5.4~
ubuntu/linux<4.4.0-171.200
ubuntu/linux-aws<4.15.0-1057.59
and 118 more
CVE-2019-19069
A memory leak in the fastrpc_dma_buf_attach() function in drivers/misc/fastrpc.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering dma_g...
ubuntu/linux<5.3.0-24.26
ubuntu/linux<5.4~
ubuntu/linux-aws<5.3.0-1008.9
ubuntu/linux-aws<5.4~
ubuntu/linux-aws-5.0<5.4~
ubuntu/linux-aws-hwe<5.4~
and 65 more
CVE-2019-11089
Insufficient input validation in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6519 may allow an authenticated user to potentially enable denial of service via local access.
<25.20.100.6519
Netapp Cloud Backup
Netapp Data Availability Services
Netapp Steelstore Cloud Integrated Storage
Netapp Solidfire Baseboard Management Controller Firmware
Netapp Solidfire Baseboard Management Controller
CVE-2019-11113
Buffer overflow in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6618 (DCH) or 21.20.x.5077 (aka15.45.5077) may allow a privileged user to potentially enable information dis...
<25.20.100.6618
=15.22.54.64.2622
=15.22.54.2622
=15.22.58.64.2993
=15.22.58.2993
=15.28.24.64.4229
and 17 more
CVE-2019-14591
Improper input validation in the API for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.
<26.20.100.7209
Netapp Cloud Backup
Netapp Data Availability Services
Netapp Steelstore Cloud Integrated Storage
Netapp Solidfire Baseboard Management Controller Firmware
Netapp Solidfire Baseboard Management Controller
CVE-2019-11111
Pointer corruption in the Unified Shader Compiler in Intel(R) Graphics Drivers before 10.18.14.5074 (aka 15.36.x.5074) may allow an authenticated user to potentially enable escalation of privilege via...
<15.36.37.5074
Netapp Cloud Backup
Netapp Data Availability Services
Netapp Steelstore Cloud Integrated Storage
Netapp Solidfire Baseboard Management Controller Firmware
Netapp Solidfire Baseboard Management Controller
CVE-2019-14590
Improper access control in the API for the Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable information disclosure via local access.
<26.20.100.7209
Netapp Cloud Backup
Netapp Data Availability Services
Netapp Steelstore Cloud Integrated Storage
Netapp Solidfire Baseboard Management Controller Firmware
Netapp Solidfire Baseboard Management Controller
CVE-2019-14574
Out of bounds read in a subsystem for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.
<26.20.100.7209
Netapp Cloud Backup
Netapp Data Availability Services
Netapp Steelstore Cloud Integrated Storage
Netapp Solidfire Baseboard Management Controller Firmware
Netapp Solidfire Baseboard Management Controller
CVE-2019-11112
Memory corruption in Kernel Mode Driver in Intel(R) Graphics Driver before 26.20.100.6813 (DCH) or 26.20.100.6812 may allow an authenticated user to potentially enable escalation of privilege via loca...
<15.45.5077
>=24.20.100.6025<26.20.100.6812
Netapp Cloud Backup
Netapp Data Availability Services
Netapp Steelstore Cloud Integrated Storage
CVE-2019-18683
An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions where local users have /dev/video0 acc...
ubuntu/linux<4.15.0-88.88
ubuntu/linux<5.3.0-40.32
ubuntu/linux<5.5~
ubuntu/linux<4.4.0-173.203
ubuntu/linux-aws<4.15.0-1060.62
ubuntu/linux-aws<5.3.0-1011.12
and 103 more
CVE-2019-18282
A device tracking vulnerability was found in the flow_dissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a sec...
redhat/kernel-rt<0:3.10.0-1160.11.1.rt56.1145.el7
redhat/kernel<0:3.10.0-1160.11.1.el7
redhat/kernel-rt<0:4.18.0-193.rt13.51.el8
redhat/kernel<0:4.18.0-193.el8
Google Android
Linux Linux kernel>=4.3<=5.3.10
and 18 more
CVE-2019-16995
In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.
Linux Linux kernel>=3.17<3.18.137
Linux Linux kernel>=4.4<4.4.177
Linux Linux kernel>=4.9<4.9.164
Linux Linux kernel>=4.14<4.14.107
Linux Linux kernel>=4.19<4.19.30
Linux Linux kernel>=4.20<4.20.17
and 29 more
CVE-2019-14835
A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs logged the buffer descriptors during migration. A privileged guest user able to...
redhat/kernel<0:2.6.32-754.23.1.el6
redhat/kernel<0:2.6.32-431.96.2.el6
redhat/kernel<0:2.6.32-504.81.2.el6
redhat/kernel-rt<0:3.10.0-1062.1.2.rt56.1025.el7
redhat/kernel<0:3.10.0-1062.1.2.el7
redhat/kernel-alt<0:4.14.0-115.13.1.el7a
and 182 more
CVE-2019-14821
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ri...
redhat/kernel<0:2.6.32-754.25.1.el6
redhat/kernel-rt<0:3.10.0-1062.7.1.rt56.1030.el7
redhat/kernel<0:3.10.0-1062.7.1.el7
redhat/kernel-alt<0:4.14.0-115.16.1.el7a
redhat/kernel<0:3.10.0-957.56.1.el7
redhat/kernel-rt<0:4.18.0-147.rt24.93.el8
and 149 more
CVE-2019-15538
An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsiz...
redhat/kernel-alt<0:4.14.0-115.21.2.el7a
ubuntu/linux<4.15.0-65.74
ubuntu/linux<5.0.0-31.33
ubuntu/linux<5.3~
ubuntu/linux-aws<4.15.0-1051.53
ubuntu/linux-aws<5.0.0-1018.20
and 117 more
CVE-2019-14816
Linux Kernel is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by mwifiex_update_vs_ie() function of Marvell Wifi Driver. By sending a specially-crafted packet, a local...
redhat/kernel-rt<0:3.10.0-1062.12.1.rt56.1042.el7
redhat/kernel-alt<0:4.14.0-115.17.1.el7a
redhat/kernel<0:3.10.0-1062.12.1.el7
redhat/kernel<0:3.10.0-327.85.1.el7
redhat/kernel<0:3.10.0-514.73.1.el7
redhat/kernel<0:3.10.0-693.65.1.el7
and 190 more
CVE-2019-14814
A flaw was found in the Linux kernel’s implementation of the Marvell wifi driver, which can allow a local user who has CAP_NET_ADMIN or administrative privileges to possibly cause a Denial Of Service ...
redhat/kernel-alt<0:4.14.0-115.17.1.el7a
redhat/kernel<0:3.10.0-1127.el7
redhat/kernel-rt<0:4.18.0-147.5.1.rt24.98.el8_1
redhat/kernel<0:4.18.0-147.5.1.el8_1
ubuntu/linux<4.15.0-66.75
ubuntu/linux<5.0.0-32.34
and 165 more
CVE-2019-15222
An issue was discovered in the Linux kernel before 5.2.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/helper.c (motu_microbookii) driver.
Linux Linux kernel<5.2.8
Netapp H410c Firmware
Netapp H410c
Netapp Active Iq Unified Manager Vmware Vsphere
Netapp Data Availability Services
Netapp Solidfire \& Hci Management Node
and 5 more
CVE-2019-15213
An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.
Linux Linux kernel<5.2.3
Netapp Baseboard Management Controller H410c Firmware
Netapp Baseboard Management Controller H410c
Netapp Active Iq Unified Manager Vmware Vsphere
Netapp Data Availability Services
Netapp Solidfire \& Hci Management Node
and 4 more
CVE-2019-15219
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver.
Linux Linux kernel<5.1.8
Netapp Baseboard Management Controller H410c Firmware
Netapp Baseboard Management Controller H410c
Netapp Active Iq Unified Manager Vmware Vsphere
Netapp Data Availability Services
Netapp Solidfire \& Hci Management Node
and 9 more
CVE-2019-15212
An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.
ubuntu/linux<4.15.0-60.67
ubuntu/linux<5.0.0-31.33
ubuntu/linux<5.2~
ubuntu/linux<4.4.0-157.185
ubuntu/linux-aws<4.15.0-1047.49
ubuntu/linux-aws<5.0.0-1018.20
and 76 more
CVE-2019-15216
An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.
ubuntu/linux<4.15.0-60.67
ubuntu/linux<5.0.0-21.22
ubuntu/linux<5.1
ubuntu/linux<4.4.0-157.185
ubuntu/linux-aws<4.15.0-1047.49
ubuntu/linux-aws<5.1
and 71 more
CVE-2019-15217
A vulnerability was found in the Linux kernel. The Zr364xx USB device driver is susceptible to malicious USB devices. An attacker able to add a specific USB device could cause a crash leading to a den...
redhat/kernel-rt<0:3.10.0-1160.rt56.1131.el7
redhat/kernel<0:3.10.0-1160.el7
ubuntu/linux<4.15.0-91.92
ubuntu/linux<5.0.0-31.33
ubuntu/linux<5.3~
ubuntu/linux<4.4.0-174.204
and 80 more
CVE-2019-15223
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/driver.c driver.
ubuntu/linux<5.0.0-31.33
ubuntu/linux<5.2~
ubuntu/linux-aws<5.0.0-1018.20
ubuntu/linux-aws<5.2~
ubuntu/linux-aws-hwe<5.2~
ubuntu/linux-azure<5.0.0-1022.23~18.04.1
and 37 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203