A vulnerability was found in Linux Kernel, , a buffer overflow occurs in drivers/net/wireless/iwlwifi/iwl-agn-sta.c, which will cause at least memory corruption. Reference: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2da424b0773cea3db47e1e81db71eeebde8269d4 https://github.com/torvalds/linux/commit/2da424b0773cea3db47e1e81db71eeebde8269d4 https://mirrors.edge.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1735643]
This was fixed in kernel 3.4 and has never impacted any currently supported Fedora releases.
Statement: The patch committed by upstream will prevent the misuse of the invalid station id, however it does not prevent the incorrect state being entered. Red Hat Enterprise Linux 6,7 and 8 are not affected by this flaw. Red Hat Enterprise Linux 5 does not have the "fix" applied and may be vulnerable to this flaw. Red Hat does not have plans to fix EL5 at this stage in its lifecycle. This flaw only applies to systems running and using the intel iwlwifi driver.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2012-6712