CVE-2019-19966

Updated: 2023-12-06

CWE: Use After Free

Description:

In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.

CVSS3: 4.6


Vendor State

OS Vendor version Errata
Debian 8 3.16.81-1 DLA-2068-1

KernelCare State

OS Original kernel version State
Debian 8
3.16.7-ckt9-3~deb8u1 show all hide all
3.16.39-1+deb8u2 3.16.51-1 3.16.7-ckt11-1+deb8u2 3.16.7-ckt20-1+deb8u2 3.16.7-ckt11-1+deb8u3 3.16.59-1 3.16.43-2+deb8u4 3.16.70-1 3.16.7-ckt20-1+deb8u4 3.16.51-3+deb8u1 3.16.7-ckt25-2+deb8u2 3.16.36-1+deb8u2 3.16.43-2+deb8u3 3.16.7-ckt25-1 3.16.72-1 3.16.7-ckt11-1+deb8u4 3.16.68-1 3.16.7-ckt25-2 3.16.7-ckt11-1+deb8u5 3.16.7-ckt20-1+deb8u3 3.16.76-1 3.16.39-1 3.16.43-2+deb8u1 3.16.68-2 3.16.56-1 3.16.7-ckt11-1+deb8u6 3.16.48-1 3.16.74-1 3.16.43-2+deb8u2 3.16.43-2 3.16.51-2 3.16.51-3 3.16.57-2 3.16.64-2 3.16.7-ckt11-1+deb8u1 3.16.7-ckt25-2+deb8u1 3.16.39-1+deb8u1 3.16.7-ckt25-2+deb8u3 3.16.43-2+deb8u5 3.16.56-1+deb8u1 3.16.7-ckt11-1 3.16.57-1 3.16.36-1+deb8u1 3.16.7-ckt20-1+deb8u1
Released
Endurance 7 eig 4.14
Ready For Release
Proofpoint
Ready For Release
Debian 10 cloud
Ready For Release
Debian 9 backports
Will Not Fix