[X][SRU][PATCH 0/1] Fix for CVE-2019-19060

Po-Hsu Lin po-hsu.lin at canonical.com
Wed Apr 8 09:07:29 UTC 2020


>From our CVE page:
https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-19060.html

"A memory leak in the adis_update_scan_mode() function in
drivers/iio/imu/adis_buffer.c in the Linux kernel before 5.3.9 allows
attackers to cause a denial of service (memory consumption), aka
CID-ab612b1daf41."

Only Xenial is marked as affected, backport is needed from some context
adjustment.

Navid Emamdoost (1):
  iio: imu: adis16400: release allocated memory on failure

 drivers/iio/imu/adis_buffer.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

-- 
2.7.4




More information about the kernel-team mailing list