CVE-2018-20169

Published: Dec 17, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

USN-3879-2

vendor-advisory

x_refsource_UBUNTU

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=704620afc70cf47abb9d6a1a57f3825d2bca49cf

x_refsource_MISC

USN-3879-1

vendor-advisory

x_refsource_UBUNTU

https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.9

x_refsource_MISC

https://github.com/torvalds/linux/commit/704620afc70cf47abb9d6a1a57f3825d2bca49cf

x_refsource_MISC

[debian-lts-announce] 20190327 [SECURITY] [DLA 1731-1] linux security update

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20190401 [SECURITY] [DLA 1731-2] linux regression update

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20190503 [SECURITY] [DLA 1771-1] linux-4.9 security update

mailing-list

x_refsource_MLIST

USN-4094-1

vendor-advisory

x_refsource_UBUNTU

USN-4118-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2019:3309

vendor-advisory

x_refsource_REDHAT

RHSA-2019:3517

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-20169

Description

Affected Products

References