active/CVE-2019-14901


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: heap OOB read in mwifiex wifi driver
References:
 https://www.openwall.com/lists/oss-security/2019/11/22/2
 https://patchwork.kernel.org/patch/11257535/
Notes:
 bwh> Introduced in 3.15 by commit 5f2caaf32bc6 "mwifiex: parse TDLS action
 bwh> frames during RX".
Bugs:
upstream: released (5.5-rc3) [1e58252e334dc3f3756f424a157d1b7484464c40]
4.19-upstream-stable: released (4.19.95) [21f08020dd8519baf209348c345131a8967e3cef]
4.9-upstream-stable: needed
3.16-upstream-stable: needed
sid: released (5.4.13-1)
4.19-buster-security: released (4.19.98-1)
4.9-stretch-security: released (4.9.210-1) [bugfix/all/mwifiex-fix-heap-overflow-in-mmwifiex_process_tdls_a.patch]
3.16-jessie-security: released (3.16.81-1) [bugfix/all/mwifiex-fix-heap-overflow-in-mmwifiex_process_tdls_a.patch]