NULL Pointer Dereference in ath10k USB Endpoint Descriptor Handling

NULL Pointer Dereference in ath10k USB Endpoint Descriptor Handling

CVE-2019-15099 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.