parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel up to and including 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks
CVE-2019-14821
Matt Delco reported a race condition in KVM's coalesced MMIO
facility, which could lead to out-of-bounds access in the kernel
A local attacker permitted to access /dev/kvm cou ...