Vulnerabilities: Multiple vulnerabilities have been discovered in the Linux kernel: - CVE-2019-14821: Race condition in KVM's coalesced MMIO facility - CVE-2019-14835: Missing bounds check in vhst net, the network back-end driver for KVM hosts - CVE-2019-15117: Missing bounds check in the usb-audio driver's descriptor parsing code - CVE-2019-15118: Unbounded recursion in the usb-audio driver's descriptor parsing code - CVE-2019-15902: Backporting error reintroduced a spectre-v1 vulnerability in the ptrace subsystem Impact: May lead to privilege escalation, denial of service, or information leaks. Affected Package: linux Fixed Versions: - Oldstable (stretch): 4.9.189-3+deb9u1 - Stable (buster): 4.19.67-2+deb10u1 Recommendation: Upgrade your linux packages.