CVE-2019-10126

Published: Jun 14, 2019

Modified: Aug 4, 2024

PUBLISHED

CVSS v3.0

5.9

MEDIUM

Description

A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memory corruption and possibly other consequences.

Vendor	Product	Versions
n/a	kernel	affected `n/a`

Weaknesses (CWE)

CWE-122

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10126

x_refsource_CONFIRM

DSA-4465

vendor-advisory

x_refsource_DEBIAN

[debian-lts-announce] 20190617 [SECURITY] [DLA 1823-1] linux security update

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20190618 [SECURITY] [DLA 1824-1] linux-4.9 security update

mailing-list

x_refsource_MLIST

20190618 [SECURITY] [DSA 4465-1] linux security update

mailing-list

x_refsource_BUGTRAQ

108817

vdb-entry

x_refsource_BID

https://support.f5.com/csp/article/K95593121

x_refsource_CONFIRM

https://security.netapp.com/advisory/ntap-20190710-0002/

x_refsource_CONFIRM

openSUSE-SU-2019:1716

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2019:1757

vendor-advisory

x_refsource_SUSE

20190722 [slackware-security] Slackware 14.2 kernel (SSA:2019-202-01)

mailing-list

x_refsource_BUGTRAQ

http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html

x_refsource_MISC

USN-4093-1

vendor-advisory

x_refsource_UBUNTU

USN-4094-1

vendor-advisory

x_refsource_UBUNTU

USN-4095-2

vendor-advisory

x_refsource_UBUNTU

USN-4095-1

vendor-advisory

x_refsource_UBUNTU

http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html

x_refsource_MISC

USN-4117-1

vendor-advisory

x_refsource_UBUNTU

USN-4118-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2019:3076

vendor-advisory

x_refsource_REDHAT

RHSA-2019:3055

vendor-advisory

x_refsource_REDHAT

RHSA-2019:3089

vendor-advisory

x_refsource_REDHAT

http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html

x_refsource_MISC

RHSA-2019:3309

vendor-advisory

x_refsource_REDHAT

RHSA-2019:3517

vendor-advisory

x_refsource_REDHAT

RHSA-2020:0174

vendor-advisory

x_refsource_REDHAT

RHSA-2020:0204

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-10126

Description

Affected Products

Weaknesses (CWE)

CVSS v3.0 Details

References