A vulnerability was found in the Linux kernel. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c does not properly allocate memory.
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1743545]
This was fixed for Fedora with the 5.2.6 stable updates.
This module is not included in the Red Hat Enterprise Linux kernels.