A vulnerability was found in marvell wifi chip driver in Linux kernel. There is a heap-based buffer overflow in lbs_ibss_join_existing function in drivers/net/wireless/marvell/libertas/cfg.c allows remote attackers to cause a denial of service(system crash) or possibly execute arbitrary code. When STA connects to AP, add_ie_rates function will be called for STA.
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1776143]
Name: ADLab of Venustech