CVE-2019-15290

Published: 20/08/2019 Updated: 07/11/2023

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15098. Reason: This candidate is a duplicate of CVE-2019-15098. Notes: All CVE users should reference CVE-2019-15098 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

Hi! I've previously reported vulnerabilities in the Linux kernel USB drivers on this list [1] found with syzkaller [2] The USB fuzzing project has been on hold for a while, but has been resumed earlier this year Here's a new bunch of 15 CVEs As an experiment this time I've requested CVEs for 2 bugs (CVE-2019-15290, CVE-2019-15291) that haven't ...

On Tue, Aug 20, 2019 at 08:20:34PM +0200, Andrey Konovalov wrote: Thanks for filing CVEs for these FWIW, link [3] seems to be missing some of the USB bugs since it only includes bugs seen on the "ci2-upstream-usb" syzbot manager, when in fact USB bugs are also being reported from the "ci-upstream-kmsan-gce" manager Based on my categorization ...

On 2019-08-20 20:20:34, Andrey Konovalov wrote: This seems like it might be a duplicate of CVE-2019-15098 The fix for CVE-2019-15098 was recently merged upstream: gitkernelorg/pub/scm/linux/kernel/git/torvalds/linuxgit/commit/?id=39d170b3cb62ba98567f5c4f40c27b5864b304e5 If you agree, could you request that MITRE mark CVE-2019-15290 ...

On 2019-09-27 19:01:48, Andrey Konovalov wrote: I've requested that MITRE mark CVE-2019-15290 as a dupe of CVE-2019-15098 Thanks! Tyler ...

On Fri, Sep 27, 2019 at 6:51 PM Tyler Hicks <tyhicks () canonical com> wrote: Oh, nice, Mathias and Hui found it as well and fixed it! =) Yes, these two CVEs are for the same issue, feel free to mark them as such Thanks! ...

https://nvd.nist.gov http://seclists.org/oss-sec/2019/q3/146

CVE-2019-15290

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect