SCP7-1124 : Security Advisory - linux - CVE-2019-17133
Created: Oct 8, 2019
Updated: Nov 17, 2019
Resolved Date: Nov 14, 2019
Found In Version: 7.0.0.2
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel
Description
In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.
CREATE(Triage):(User=admin) [CVE-2019-17133|https://nvd.nist.gov/vuln/detail/CVE-2019-17133]