Huangwen

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions 3.x.x and 4.x.x before 4.18.0 **Description** The issue is related to a heap overflow flaw in the Marvell WiFi chip driver of the Linux kernel. This flaw allows a remote attacker to cause a system crash, resulting in a denial of service, or execute arbitrary code with root permissions, affecting the confidentiality and integrity of files on the system. **Recommendations** For Linux kernel versions 3.x.x and 4.x.x before 4.18.0, update to version 4.18.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the Marvell WiFi chip driver to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.3 **Description** The issue is related to a heap-based buffer overflow in the Marvell Wi-Fi chip driver of the Linux kernel. This allows local users to cause a denial of service, resulting in a system crash, or possibly execute arbitrary code. The vulnerability is associated with errors in the `mwifiex update vs ie()` function, which can be exploited to achieve these outcomes. **Recommendations** For Linux kernel versions prior to 5.3, consider disabling the Marvell Wi-Fi chip driver as a temporary workaround until a patch is available. Restrict access to the vulnerable `mwifiex update vs ie()` function to minimize the risk of exploitation. Update to version 5.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.3 **Description** The issue is related to a heap-based buffer overflow in the Marvell Wi-Fi chip driver of the Linux kernel. This overflow is associated with errors in the `mwifiex set uap rates()` function. Exploitation of this issue can allow an attacker to cause a denial of service, potentially leading to a system crash, or possibly execute arbitrary code. The estimated number of potentially affected devices and details about real-world incidents where this issue was exploited are not provided. **Recommendations** For Linux kernel versions prior to 5.3, update to version 5.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the `mwifiex set uap rates()` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Linux Kernel (affected versions not specified) **Description** A Heap Overflow vulnerability was found in the `mwifiex set wmm params()` function of the Marvell Wifi Driver in the Linux Kernel. This issue is related to buffer overflow errors. Exploitation of the vulnerability may allow an attacker to cause a denial of service or execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A defect was found in the Linux kernel, specifically a heap-based buffer overflow in the `mwifiex uap parse tail ies` function located in the `drivers/net/wireless/marvell/mwifiex/ie.c` file. This could lead to memory corruption and possibly other consequences. The vulnerability might allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is caused by a buffer overflow in the mwifiex update bss desc with ie function in the Linux kernel, specifically in the marvell/mwifiex/scan.c file. This can be exploited by a remote attacker to potentially escalate privileges, cause a denial of service, or execute arbitrary code. The vulnerability can be triggered when connecting to a malicious wireless network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.