CVE-2016-5342

Name of the Vulnerable Software and Affected Versions Linux kernel versions 3.x

Description A heap-based buffer overflow issue exists in the wcnss wlan write function in the wcnss wlan device driver. This allows attackers to potentially cause a denial of service or have other unspecified impacts by writing to /dev/wcnss wlan with an unexpected amount of data.

Recommendations For Linux kernel version 3.x, update to a version that includes a fix for this issue. If no specific fix is provided for version 3.x, consider applying patches or configuration changes that restrict access to the /dev/wcnss wlan device to minimize the risk of exploitation. As a temporary workaround, consider disabling the wcnss wlan device driver until a patch is available.