LINCD-196 : Security Advisory - linux - CVE-2019-17133
Created: Nov 13, 2019
Updated: Apr 22, 2022
Resolved Date: Dec 2, 2019
Found In Version: 10.20.3.0
Fix Version: 10.20.3.0
Severity: Standard
Applicable for: Wind River Linux CD
Component/s: Kernel
Description
In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.
CREATE(Triage):(User=admin) CVE-2019-17133 (https://nvd.nist.gov/vuln/detail/CVE-2019-17133)