An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c.

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=704620afc70cf47abb9d6a1a57f3825d2bca49cf

access.redhat.com/errata/RHSA-2019:3309

access.redhat.com/errata/RHSA-2019:3517

cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.9

github.com/torvalds/linux/commit/704620afc70cf47abb9d6a1a57f3825d2bca49cf

lists.debian.org/debian-lts-announce/2019/03/msg00034.html

lists.debian.org/debian-lts-announce/2019/04/msg00004.html

lists.debian.org/debian-lts-announce/2019/05/msg00002.html

usn.ubuntu.com/3879-1/

usn.ubuntu.com/3879-2/

usn.ubuntu.com/4094-1/

usn.ubuntu.com/4118-1/

cbl_mariner 2

redhatcve 1

cve 1

ubuntucve 1

nessus 55

debiancve 1

prion 1

nvd 1

veracode 1

redhat 8

openvas 26

amazon 2

fedora 3

ibm 4

oraclelinux 5

ubuntu 4

cloudfoundry 2

suse 2

photon 3

osv 2

debian 3

centos 1

slackware 1

androidsecurity 1

lenovo 1

cbl_mariner

CVE-2018-20169 affecting package kernel for versions less than 5.15.148.2-2

2024-02-25 03:00:06

CVE-2018-20169 affecting package kernel for versions less than 6.6.22.1-2

2024-04-02 21:08:16

redhatcve

CVE-2018-20169

2020-04-03 02:00:45

cve

CVE-2018-20169

2018-12-17 07:29:00

ubuntucve

CVE-2018-20169

2018-12-17 00:00:00

nessus

CBL Mariner 2.0 Security Update: kernel (CVE-2018-20169)

2024-07-03 00:00:00

RHEL 6 : kernel-rt (RHSA-2020:2777)

2020-07-01 00:00:00

Amazon Linux 2 : kernel (ALAS-2019-1145)

2019-01-10 00:00:00

debiancve

CVE-2018-20169

2018-12-17 07:29:00

prion

Code injection

2018-12-17 07:29:00

nvd

CVE-2018-20169

2018-12-17 07:29:00

veracode

Denial Of Service (DoS)

2019-11-06 00:20:55

redhat

(RHSA-2020:2777) Moderate: kernel-rt security and bug fix update

2020-07-01 08:17:17

(RHSA-2020:2770) Moderate: kernel security and bug fix update

2020-06-30 11:41:33

(RHSA-2020:2851) Important: kernel security and bug fix update

2020-07-07 08:51:57

openvas

Fedora Update for kernel-tools FEDORA-2018-6e8c330d50

2018-12-21 00:00:00

Fedora Update for kernel-headers FEDORA-2018-6e8c330d50

2018-12-21 00:00:00

Ubuntu: Security Advisory (USN-3879-1)

2019-02-05 00:00:00

amazon

Medium: kernel

2019-01-09 22:47:00

Medium: kernel

2019-01-07 22:25:00

fedora

[SECURITY] Fedora 28 Update: kernel-headers-4.19.10-200.fc28

2018-12-21 05:54:56

[SECURITY] Fedora 28 Update: kernel-tools-4.19.10-200.fc28

2018-12-21 05:54:56

[SECURITY] Fedora 28 Update: kernel-4.19.10-200.fc28

2018-12-21 05:54:56

ibm

Security Bulletin: IBM MQ Appliance is affected by multiple kernel vulnerabilities

2022-07-12 23:39:03

Security Bulletin: Multiple vulnerabiities in the IBM 4769 Developer's Toolkit. CVE-2019-20811, CVE-2020-0466, CVE-2021-0920, CVE-2021-3347, CVE-2018-19985, CVE-2018-20169, CVE-2019-13648, CVE-2019-15916, CVE-2019-19527

2023-04-05 16:09:24

Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities in kernel.

2022-07-07 10:52:55

oraclelinux

Unbreakable Enterprise kernel security update

2019-07-29 00:00:00

Unbreakable Enterprise kernel security update

2019-11-20 00:00:00

Unbreakable Enterprise kernel security update

2019-11-21 00:00:00

ubuntu

Linux kernel (Xenial HWE) vulnerabilities

2019-02-04 00:00:00

Linux kernel vulnerabilities

2019-02-04 00:00:00

Linux kernel vulnerabilities

2019-08-13 00:00:00

cloudfoundry

USN-3879-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

2019-02-15 00:00:00

USN-4094-1: Linux kernel vulnerabilities | Cloud Foundry

2019-09-30 00:00:00

suse

Security update for the Linux Kernel (important)

2019-02-06 00:00:00

Security update for the Linux Kernel (important)

2019-01-18 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0206

2019-02-06 00:00:00

Important Photon OS Security Update - PHSA-2019-0206

2019-02-06 00:00:00

Critical Photon OS Security Update - PHSA-2019-0128

2019-02-13 00:00:00

osv

linux-4.9 - security update

2019-04-29 00:00:00

linux - security update

2019-03-26 00:00:00

debian

[SECURITY] [DLA 1771-1] linux-4.9 security update

2019-05-03 10:07:46

[SECURITY] [DLA 1731-2] linux regression update

2019-04-01 18:39:17

[SECURITY] [DLA 1731-1] linux security update

2019-03-27 16:39:16

centos

bpftool, kernel, perf, python security update

2020-04-08 17:30:30

slackware

[slackware-security] Slackware 14.2 kernel

2019-01-31 00:22:22

androidsecurity

Pixel Update Bulletin—September 2019

2019-09-03 00:00:00

lenovo

AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US

2020-04-13 19:22:04

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.1%

JSON

Related for CVELIST:CVE-2018-20169