CVE-2019-14897

Name of the Vulnerable Software and Affected Versions Linux kernel version kernel-2.6.32

Description A stack-based buffer overflow was found in the Linux kernel's Marvell WiFi chip driver. This issue can cause a denial of service (system crash) or possibly allow the execution of arbitrary code when a station works in IBSS mode and connects to another station. The vulnerability is related to the lbs ibss join existing function in the driver, which can be exploited by a remote attacker to access confidential data, compromise its integrity, and cause a denial of service.

Recommendations For Linux kernel version kernel-2.6.32, consider disabling the lbs ibss join existing function in the Marvell WiFi chip driver as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.