Linux kernel before 5.3.6 Use After Free Vulnerability

Summary

Linux kernel before 5.3.6 suffers from use after free vulnerability.

Credit:

The information has been provided by Vendor

The original article can be found at:http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html


Details

In the Linux kernel before 5.3.6, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka CID-7fd25e6fc035.

 

Vulnerable Systems:

Linux kernel before 5.3.6

 

CVE Information:

CVE-2019-19525

 

Disclosure Timeline:
Published Date:12/3/2019

Categories: News