CVE-2020-11609

Published April 7th, 2020

View on NVD ↗

CVSS v3

4.3

MEDIUM

CVSS v2

4.9

MEDIUM

Affected

PROJECT

Description

An issue was discovered in the stv06xx subsystem in the Linux kernel before 5.6.1. drivers/media/usb/gspca/stv06xx/stv06xx.c and drivers/media/usb/gspca/stv06xx/stv06xx_pb0100.c mishandle invalid descriptors, as demonstrated by a NULL pointer dereference, aka CID-485b06aadb93.

torvalds/linux

Linux kernel source tree

GitHub

237K