A flaw was found in the Linux kernels implementation of the mwifiex wireless kernel driver. A remote attacker in control of an wireless access point may be able to create a heap-overflow in the access-point handling code. This heap overflow may lead to memory corruption and possibly priviledge escalation. References: https://lore.kernel.org/linux-wireless/20190531131841.7552-1-tiwai@suse.de/
Acknowledgments: Name: huangwen (ADLab of Venustech)
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1720122]
This is fixed for Fedora in the 5.1.11 stable kernel updates.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:3055 https://access.redhat.com/errata/RHSA-2019:3055
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:3076 https://access.redhat.com/errata/RHSA-2019:3076
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2019-10126
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:3089 https://access.redhat.com/errata/RHSA-2019:3089
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:3309 https://access.redhat.com/errata/RHSA-2019:3309
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:3517 https://access.redhat.com/errata/RHSA-2019:3517
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:0174 https://access.redhat.com/errata/RHSA-2020:0174
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions Via RHSA-2020:0204 https://access.redhat.com/errata/RHSA-2020:0204
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.6 Extended Update Support Via RHSA-2020:2289 https://access.redhat.com/errata/RHSA-2020:2289