CVE-2019-19068

MEDIUM

Linux Kernel <5.3.11 - DoS

Title source: llm

Description

A memory leak in the rtl8xxxu_submit_int_urb() function in drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-a2cdd07488e6.

References (11)

Scores

CVSS v3 4.6
EPSS 0.0009
EPSS Percentile 25.9%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE
CWE-401
Status published

Affected Products (11)

linux/linux_kernel < 5.3.11
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
debian/debian_linux
fedoraproject/fedora
fedoraproject/fedora
opensuse/leap
redhat/enterprise_linux
redhat/enterprise_linux

Timeline

Published Nov 18, 2019
Tracked Since Feb 18, 2026