Lucene search

K
redhatcveRedhat.comRH:CVE-2020-11668
HistoryApr 16, 2020 - 1:03 p.m.

CVE-2020-11668

2020-04-1613:03:37
redhat.com
access.redhat.com
34

0.0004 Low

EPSS

Percentile

14.2%

A NULL pointer dereference flaw was found in the Xirlink camera USB driver β€˜xirlink-cit’ in the Linux kernel. The driver mishandles invalid descriptors leading to a denial-of-service (DoS). This could allow a local attacker with user privilege to crash the system or leak kernel internal information.

Mitigation

Mitigation for this issue is to skip loading the affected module 'xirlink-cit' onto the system till we have a fix available, this can be done by a blacklist mechanism, this will ensure the driver is not loaded at the boot time.

How do I blacklist a kernel module to prevent it from loading automatically?  
https://access.redhat.com/solutions/41278