Summary

Security Advisory ID : BSA-2020-910

Component : Linux Kernel

Revision : 1.0: Final

In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c.

Impact: Successful exploitation of this vulnerability could lead to disclosure  of sensitive information.

Affected Products

No Brocade Fiber Channel Products from Broadcom are currently known to be affected by this vulnerability.

Notes.

Brocade Manageability products are not vulnerable to CVE-2019-19947. However, since the environment that runs the products is not under Brocade's control, Brocade recommends Customers to apply recommendation from the vendors.

Revision History