Bug 1744130 (CVE-2019-14814) - CVE-2019-14814 kernel: heap overflow in mwifiex_set_uap_rates() function of Marvell Wifi Driver leading to DoS
Summary: CVE-2019-14814 kernel: heap overflow in mwifiex_set_uap_rates() function of M...
Keywords:
Status: NEW
Alias: CVE-2019-14814
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1775475 1775476 1775478 1775479 1775474 1775477 1780612
Blocks: 1744131
TreeView+ depends on / blocked
 
Reported: 2019-08-21 12:24 UTC by Marian Rehak
Modified: 2019-12-06 23:15 UTC (History)
47 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in the Linux kernel’s implementation of the Marvell wifi driver, which can allow a local user who has CAP_NET_ADMIN or administrative privileges to possibly cause a Denial Of Service (DOS) by corrupting memory and possible code execution.
Clone Of:
Environment:
Last Closed:


Attachments (Terms of Use)

Description Marian Rehak 2019-08-21 12:24:31 UTC
A flaw was found in the Linux kernels implementation of marvell wifi driver which can allow a local user who has CAP_NET_ADMIN or administrative privileges to possibly cause a Denial Of Service (DOS) by corrupting memory and possible code execution.

Comment 2 msiddiqu 2019-08-28 19:57:57 UTC
Acknowledgments:

Name: Huangwen (ADLab of Venustech)

Comment 3 msiddiqu 2019-08-28 20:01:15 UTC
*contents deleted*

Comment 4 msiddiqu 2019-08-28 20:01:20 UTC
References: 

https://www.openwall.com/lists/oss-security/2019/08/28/1

Comment 5 Ẃ҉àͨͦ̀̅̒͌̿͒̀̕͠d̬̳̍ͭe̶͔̩̳̘ͣ͌͂ͯ̀ ̾̂̎͒M̧e͈͖͎͚̩̝̼̩͕̽ͤͦ̈́̈́̾̐ͤ̚l̘͍͚̬̱̗͉̞ă͐̐͑͒̽͑̋͢҉̪̫̞̤̪̹̳̞i̸͕̱̪̪͕̠̪̜̝ͣͪͬͤͤ̆̌ͥ̌̀͘n͕̤͕̪̙͉̼̈́̏̋̒ͮ̐̊ĝ̪̤̗̮̝̬̰̂̏ͬ̿͆̃ 2019-11-22 02:48:30 UTC
External References:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7caac62ed598a196d6ddf8d9c121e12e082cac3a

Comment 7 Ẃ҉àͨͦ̀̅̒͌̿͒̀̕͠d̬̳̍ͭe̶͔̩̳̘ͣ͌͂ͯ̀ ̾̂̎͒M̧e͈͖͎͚̩̝̼̩͕̽ͤͦ̈́̈́̾̐ͤ̚l̘͍͚̬̱̗͉̞ă͐̐͑͒̽͑̋͢҉̪̫̞̤̪̹̳̞i̸͕̱̪̪͕̠̪̜̝ͣͪͬͤͤ̆̌ͥ̌̀͘n͕̤͕̪̙͉̼̈́̏̋̒ͮ̐̊ĝ̪̤̗̮̝̬̰̂̏ͬ̿͆̃ 2019-11-22 03:57:20 UTC
Leaving this flaw rated as moderate due to the local privs required to activate this flaw already.

Comment 10 Petr Matousek 2019-12-06 14:08:16 UTC
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1780612]

Comment 11 Justin M. Forbes 2019-12-06 23:15:28 UTC
This was fixed for Fedora with the 5.2.17 stable kernel updates.


Note You need to log in before you can comment on or make changes to this bug.