Lucene search

K
redhatcveRedhat.comRH:CVE-2019-19524
HistoryDec 13, 2019 - 7:38 p.m.

CVE-2019-19524

2019-12-1319:38:26
redhat.com
access.redhat.com
26

EPSS

0.003

Percentile

65.3%

A use-after-free flaw was found in the Linux kernel’s input device driver functionality when unplugging a device. A user with physical access could use this flaw to crash the system.

Mitigation

To mitigate this issue for the Red Hat Enterprise Linux 7 or higher version, prevent module ff-memless from being loaded. Please see <https://access.redhat.com/solutions/41278&gt; for how to blacklist a kernel module to prevent it from loading automatically.