PT-2016-7542 · Linux+3 · Linux Kernel+3

Daxing Guo

·

Published

2016-09-26

·

Updated

2017-03-22

·

CVE-2016-8658

CVSS v3.1

6.1

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.7.5
Description The issue is related to a stack-based buffer overflow in the brcmf cfg80211 start ap function. This function is located in the cfg80211.c file within the Linux kernel. The overflow can occur when a local user sends a command to a Netlink socket with a long SSID Information Element. This can cause a denial of service, resulting in a system crash, or potentially have other unspecified impacts.
Recommendations For Linux kernel versions prior to 4.7.5, update to version 4.7.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the Netlink socket to minimize the risk of exploitation.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2016-2022
ALT-PU-2017-1330
CVE-2016-8658
MGASA-2016-0372
OPENSUSE-SU-2016_2583-1
OPENSUSE-SU-2016_2625-1
OPENSUSE-SU-2016_3021-1
SUSE-SU-2016:2912-1
SUSE-SU-2016:3304-1
SUSE-SU-2017:0471-1
USN-3145-1
USN-3145-2
USN-3146-1
USN-3146-2
USN-3161-3
USN-3161-4

Affected Products

Alt Linux
Linux Kernel
Suse
Ubuntu