CVE-2014-8709

Published: Nov 10, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The ieee80211_fragment function in net/mac80211/tx.c in the Linux kernel before 3.13.5 does not properly maintain a certain tail pointer, which allows remote attackers to obtain sensitive cleartext information by reading packets.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

1037968

vdb-entry

x_refsource_SECTRACK

SUSE-SU-2015:0652

vendor-advisory

x_refsource_SUSE

https://github.com/torvalds/linux/commit/338f977f4eb441e69bb9a46eaa0ac715c931a67f

x_refsource_CONFIRM

RHSA-2015:0290

vendor-advisory

x_refsource_REDHAT

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.13.5

x_refsource_CONFIRM

SUSE-SU-2015:0481

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2015:0566

vendor-advisory

x_refsource_SUSE

[oss-security] 20141109 Re: CVE Request: Linux kernel mac80211 plain text leak

mailing-list

x_refsource_MLIST

linux-kernel-cve20148709-info-disclsoure(98922)

vdb-entry

x_refsource_XF

RHSA-2015:1272

vendor-advisory

x_refsource_REDHAT

70965

vdb-entry

x_refsource_BID

https://source.android.com/security/bulletin/2017-03-01.html

x_refsource_CONFIRM

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=338f977f4eb441e69bb9a46eaa0ac715c931a67f

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-8709

Description

Affected Products

References