In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.
2019-10-04T12:15:11.370
2024-11-21T04:31:45.520
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | linux | linux_kernel | < 3.16.77 | Yes |
| Operating System | linux | linux_kernel | < 4.4.198 | Yes |
| Operating System | linux | linux_kernel | < 4.9.198 | Yes |
| Operating System | linux | linux_kernel | < 4.14.151 | Yes |
| Operating System | linux | linux_kernel | < 4.19.81 | Yes |
| Operating System | linux | linux_kernel | < 5.3.8 | Yes |
| Operating System | debian | debian_linux | 8.0 | Yes |
| Operating System | canonical | ubuntu_linux | 14.04 | Yes |
| Operating System | canonical | ubuntu_linux | 16.04 | Yes |
| Operating System | canonical | ubuntu_linux | 18.04 | Yes |
| Operating System | canonical | ubuntu_linux | 19.04 | Yes |
| Operating System | opensuse | leap | 15.1 | Yes |