Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2019-17133

In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.

Related bugs and status

CVE-2019-17133 (Candidate) is related to these bugs:

Bug #1864763: CVE-2019-10126 / CVE-2019-14895 / CVE-2019-17133 / CVE-2019-14901 / CVE-2019-16746: WiFi Driver Vulnerabilities

Summary				In	Importance	Status
	1864763	CVE-2019-10126 / CVE-2019-14895 / CVE-2019-17133 / CVE-2019-14901 / CVE-2019-16746: WiFi Driver Vulnerabilities		StarlingX	Low	Invalid

See the

CVE page on Mitre.org for more details.

References

MISC: https://marc.info/?l=l...
SUSE: openSUSE-SU-2019:2392
CONFIRM: https://security.netap...
SUSE: openSUSE-SU-2019:2444
BUGTRAQ: 20191108 [slackware-se...
MISC: http://packetstormsecu...
UBUNTU: USN-4208-1
UBUNTU: USN-4210-1
UBUNTU: USN-4211-2
UBUNTU: USN-4211-1
UBUNTU: USN-4226-1
MLIST: [debian-lts-announce] ...
REDHAT: RHSA-2020:0174
REDHAT: RHSA-2020:0374
REDHAT: RHSA-2020:0375
REDHAT: RHSA-2020:0543
REDHAT: RHSA-2020:0592
REDHAT: RHSA-2020:0609
MLIST: [debian-lts-announce] ...
REDHAT: RHSA-2020:0653
REDHAT: RHSA-2020:0661
REDHAT: RHSA-2020:0664
REDHAT: RHSA-2020:0790
MISC: https://www.oracle.com...