NULL Pointer Dereference in ath10k USB Endpoint Descriptor Handling
CVE-2019-15099 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.