Two memory leaks in the rtl_usb_probe() function in drivers/net/wireless/realtek/rtlwifi/usb.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption).
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1775016]
Closing services. No wifi usage in this environment.
This issue is rated as having Low impact because of the preconditions needed to trigger the resource cleanup code path (physical access).
In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module rtl8192cu. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .