Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2018-20169 - CERT CVE
CVE-2018-20169
ID
CVE-2018-20169
Sažetak
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c.
Reference
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=704620afc70cf47abb9d6a1a57f3825d2bca49cf
https://access.redhat.com/errata/RHSA-2019:3309
https://access.redhat.com/errata/RHSA-2019:3517
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.9
https://github.com/torvalds/linux/commit/704620afc70cf47abb9d6a1a57f3825d2bca49cf
https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html
https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html
https://lists.debian.org/debian-lts-announce/2019/05/msg00002.html
https://usn.ubuntu.com/3879-1/
https://usn.ubuntu.com/3879-2/
https://usn.ubuntu.com/4094-1/
https://usn.ubuntu.com/4118-1/
CVSS
Base:
7.2
Impact:
10.0
Exploitability:
3.9
Pristup
Vektor
Složenost
Autentikacija
LOCAL
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
COMPLETE
COMPLETE
COMPLETE
CVSS vektor
AV:L/AC:L/Au:N/C:C/I:C/A:C
Zadnje važnije ažuriranje
04-03-2024 - 22:59
Objavljeno
17-12-2018 - 07:29