PT-2019-4496 · Linux+5 · Linux Kernel+5

Published

2019-09-11

·

Updated

2022-06-17

·

CVE-2019-5108

CVSS v3.1

7.4

High

VectorAV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.3
Description The issue is related to insufficient input validation and incorrect implementation of functions in the Linux kernel. It can be exploited by a remote attacker to cause a denial-of-service by sending IAPP location updates for stations before the required authentication process has completed, potentially leading to CAM table attacks or traffic flapping by faking existing clients in nearby APs. An attacker can forge Authentication and Association Request packets to trigger this issue.
Recommendations For Linux kernel versions prior to 5.3, update to version 5.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the IAPP protocol to minimize the risk of exploitation. Avoid using the IAPP protocol for location updates until the issue is resolved.

Exploit

Fix

DoS

RCE

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-440CWE-20CWE-287

Related Identifiers

ALT-PU-2019-2838
ALT-PU-2019-2842
ALT-PU-2019-2891
ALT-PU-2020-1198
ALT-PU-2020-1501
ALT-PU-2020-1714
ALT-PU-2020-2410
ALT-PU-2020-2433
ALT-PU-2021-1870
BDU:2020-00355
CESA-2020_1016
CESA-2020_1567
CESA-2020_1769
CVE-2019-5108
DLA-2241-1
DLA-2241-2
DLA-2242-1
DSA-4698-1
RHSA-2020:1016
RHSA-2020:1493
RHSA-2020:1567
RHSA-2020:1769
RHSA-2020_1016
RHSA-2020_1567
RHSA-2020_1769
SUSE-SU-2020:0868-1
SUSE-SU-2020:0940-1
SUSE-SU-2020:1255-1
SUSE-SU-2020:1275-1
SUSE-SU-2020:14442-1
SUSE-SU-2020_0868-1
SUSE-SU-2020_0940-1
SUSE-SU-2020_14442-1
USN-4285-1
USN-4286-1
USN-4286-2
USN-4287-1
USN-4287-2

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu