PT-2019-4973 · Linux+5 · Linux Kernel+5

Huangwen

·

Published

2019-05-31

·

Updated

2023-02-12

·

CVE-2019-10126

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A defect was found in the Linux kernel, specifically a heap-based buffer overflow in the mwifiex uap parse tail ies function located in the drivers/net/wireless/marvell/mwifiex/ie.c file. This could lead to memory corruption and possibly other consequences. The vulnerability might allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Memory Corruption

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-787CWE-122

Related Identifiers

ALT-PU-2019-2275
ALT-PU-2019-2276
ALT-PU-2019-2296
ALT-PU-2019-2314
ALT-PU-2019-2339
ALT-PU-2019-2746
BDU:2020-01593
CESA-2019_3055
CESA-2019_3309
CESA-2019_3517
CVE-2019-10126
DLA-1823-1
DLA-1824-1
DSA-4465-1
OPENSUSE-SU-2019:1716-1
OPENSUSE-SU-2019:1757-1
OPENSUSE-SU-2019_1716-1
OPENSUSE-SU-2019_1757-1
RHSA-2019:3055
RHSA-2019:3076
RHSA-2019:3089
RHSA-2019:3309
RHSA-2019:3517
RHSA-2019_3055
RHSA-2019_3089
RHSA-2019_3309
RHSA-2019_3517
RHSA-2020:0174
RHSA-2020:0204
RHSA-2020:2289
SUSE-SU-2019:1823-1
SUSE-SU-2019:1823-2
SUSE-SU-2019:1829-1
SUSE-SU-2019:1851-1
SUSE-SU-2019:1852-1
SUSE-SU-2019:1854-1
SUSE-SU-2019:1855-1
SUSE-SU-2019:2450-1
USN-4093-1
USN-4094-1
USN-4095-1
USN-4095-2
USN-4117-1
USN-4118-1

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu