{"id":"CVE-2020-11609","details":"An issue was discovered in the stv06xx subsystem in the Linux kernel before 5.6.1. drivers/media/usb/gspca/stv06xx/stv06xx.c and drivers/media/usb/gspca/stv06xx/stv06xx_pb0100.c mishandle invalid descriptors, as demonstrated by a NULL pointer dereference, aka CID-485b06aadb93.","modified":"2026-04-16T00:07:21.620578055Z","published":"2020-04-07T17:15:14.617Z","related":["SUSE-SU-2020:1255-1","SUSE-SU-2020:1275-1","SUSE-SU-2020:1663-1","openSUSE-SU-2020:0801-1"],"references":[{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html"},{"type":"WEB","url":"https://usn.ubuntu.com/4369-1/"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html"},{"type":"WEB","url":"https://usn.ubuntu.com/4364-1/"},{"type":"WEB","url":"https://usn.ubuntu.com/4368-1/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4345-1/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2020/dsa-4698"},{"type":"ADVISORY","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.6.1"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20200430-0004/"},{"type":"FIX","url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=485b06aadb933190f4bc44e006076bc27a23f205"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/485b06aadb933190f4bc44e006076bc27a23f205"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11609.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"5.6.1"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]},{"events":[{"introduced":"0"},{"last_affected":"18.04"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}