Lucene search

PRIOn knowledge basePRION:CVE-2020-12653

HistoryMay 05, 2020 - 6:15 a.m.

Buffer overflow

2020-05-0506:15:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/marvell/mwifiex/scan.c allows local users to gain privileges or cause a denial of service because of an incorrect memcpy and buffer overflow, aka CID-b70261a288ea.

CPENameOperatorVersion
debian_linuxeq8.0
debian_linuxeq9.0
linux_kernellt5.5.4
leapeq15.1

Name	Operator	Version
debian_linux	eq	8.0
debian_linux	eq	9.0
linux_kernel	lt	5.5.4
leap	eq	15.1

References

lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html

www.openwall.com/lists/oss-security/2020/05/08/2

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.4

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b70261a288ea4d2f4ac7cd04be08a9f0f2de4f4d

github.com/torvalds/linux/commit/b70261a288ea4d2f4ac7cd04be08a9f0f2de4f4d

lists.debian.org/debian-lts-announce/2020/06/msg00011.html

lists.debian.org/debian-lts-announce/2020/06/msg00012.html

lists.debian.org/debian-lts-announce/2020/06/msg00013.html

security.netapp.com/advisory/ntap-20200608-0001/

www.debian.org/security/2020/dsa-4698