A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
12 Feb 2023, 23:36
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP. | |
CWE | CWE-122 |
02 Feb 2023, 21:18
Type | Values Removed | Values Added |
---|---|---|
Summary | A heap-based buffer overflow vulnerability was found in the Linux kernel's Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP. | |
References |
|
|
19 Jan 2023, 16:14
Type | Values Removed | Values Added |
---|---|---|
First Time |
Canonical
Canonical ubuntu Linux Debian debian Linux Debian |
|
References | (UBUNTU) https://usn.ubuntu.com/4228-1/ - Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/155879/Kernel-Live-Patch-Security-Notice-LSN-0061-1.html - Third Party Advisory, VDB Entry | |
References | (UBUNTU) https://usn.ubuntu.com/4227-1/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4225-1/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4225-2/ - Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00021.html - Mailing List, Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4226-1/ - Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/156185/Kernel-Live-Patch-Security-Notice-LSN-0062-1.html - Third Party Advisory, VDB Entry | |
References | (UBUNTU) https://usn.ubuntu.com/4227-2/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4228-2/ - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html - Mailing List, Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html - Mailing List, Third Party Advisory | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20200103-0001/ - Third Party Advisory | |
CPE | cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* |
Information
Published : 2019-11-27 09:15
Updated : 2023-12-10 13:13
NVD link : CVE-2019-14896
Mitre link : CVE-2019-14896
CVE.ORG link : CVE-2019-14896
JSON object : View
Products Affected
canonical
- ubuntu_linux
fedoraproject
- fedora
redhat
- enterprise_linux
linux
- linux_kernel
debian
- debian_linux