PT-2019-4496 · Linux+5 · Linux Kernel+5

Publicado

2019-09-11

·

Atualizado

2022-06-17

·

CVE-2019-5108

CVSS v3.1

7.4

Alta

VetorAV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.3
Description The issue is related to insufficient input validation and incorrect implementation of functions in the Linux kernel. It can be exploited by a remote attacker to cause a denial-of-service by sending IAPP location updates for stations before the required authentication process has completed, potentially leading to CAM table attacks or traffic flapping by faking existing clients in nearby APs. An attacker can forge Authentication and Association Request packets to trigger this issue.
Recommendations For Linux kernel versions prior to 5.3, update to version 5.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the IAPP protocol to minimize the risk of exploitation. Avoid using the IAPP protocol for location updates until the issue is resolved.

Exploit

Correção

DoS

RCE

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-440CWE-20CWE-287

Identificadores relacionados

ALT-PU-2019-2838
ALT-PU-2019-2842
ALT-PU-2019-2891
ALT-PU-2020-1198
ALT-PU-2020-1501
ALT-PU-2020-1714
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2020-00355
CESA-2020_1016
CESA-2020_1567
CESA-2020_1769
CVE-2019-5108
DLA-2241-1
DLA-2241-2
DLA-2242-1
DSA-4698-1
RHSA-2020:1016
RHSA-2020:1493
RHSA-2020:1567
RHSA-2020:1769
RHSA-2020_1016
RHSA-2020_1567
RHSA-2020_1769
SUSE-SU-2020:0868-1
SUSE-SU-2020:0940-1
SUSE-SU-2020:1255-1
SUSE-SU-2020:1275-1
SUSE-SU-2020:14442-1
SUSE-SU-2020_0868-1
SUSE-SU-2020_0940-1
SUSE-SU-2020_14442-1
USN-4285-1
USN-4286-1
USN-4286-2
USN-4287-1
USN-4287-2

Produtos afetados

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu