First published: Fri May 31 2019(Updated: )
A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memory corruption and possibly other consequences.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel-rt | <0:3.10.0-1062.4.1.rt56.1027.el7 | 0:3.10.0-1062.4.1.rt56.1027.el7 |
redhat/kernel | <0:3.10.0-1062.4.1.el7 | 0:3.10.0-1062.4.1.el7 |
redhat/kernel-alt | <0:4.14.0-115.17.1.el7a | 0:4.14.0-115.17.1.el7a |
redhat/kernel | <0:3.10.0-957.54.1.el7 | 0:3.10.0-957.54.1.el7 |
redhat/kernel-rt | <0:4.18.0-147.rt24.93.el8 | 0:4.18.0-147.rt24.93.el8 |
redhat/kernel | <0:4.18.0-147.el8 | 0:4.18.0-147.el8 |
redhat/kernel | <0:4.18.0-80.15.1.el8_0 | 0:4.18.0-80.15.1.el8_0 |
Linux Kernel | >=4.2<4.4.186 | |
Linux Kernel | >=4.5<4.9.186 | |
Linux Kernel | >=4.10<4.14.134 | |
Linux Kernel | >=4.15<4.19.59 | |
Linux Kernel | >=4.20<5.1.18 | |
Red Hat Enterprise Virtualization | =4.0 | |
Red Hat Enterprise Linux | =8.0 | |
Red Hat Enterprise Linux | =8.2 | |
Red Hat Enterprise Linux | =8.4 | |
Red Hat Enterprise Linux Desktop | =7.0 | |
Red Hat Enterprise Linux Server EUS | =7.7 | |
Red Hat Enterprise Linux Server EUS | =8.1 | |
Red Hat Enterprise Linux Server EUS | =8.2 | |
Red Hat Enterprise Linux Server EUS | =8.4 | |
Red Hat Enterprise Linux for Real Time | =7 | |
Red Hat Enterprise Linux for Real Time | =8 | |
Red Hat Enterprise Linux for Real Time for NFV | =7 | |
Red Hat Enterprise Linux for Real Time for NFV | =8.2 | |
Red Hat Enterprise Linux for Real Time for NFV | =8.4 | |
Red Hat Enterprise Linux for Real Time | =8.2 | |
Red Hat Enterprise Linux for Real Time | =8.4 | |
Red Hat Enterprise Linux Server | =7.0 | |
Red Hat Enterprise Linux Server | =8.0 | |
Red Hat Enterprise Linux Server | =7.7 | |
Red Hat Enterprise Linux Server | =7.7 | |
Red Hat Enterprise Linux Server | =8.2 | |
Red Hat Enterprise Linux Server | =8.4 | |
Red Hat Enterprise Linux Workstation | =7.0 | |
Ubuntu | =14.04 | |
Ubuntu | =16.04 | |
Ubuntu | =18.04 | |
Ubuntu | =19.04 | |
Debian | =8.0 | |
Debian | =9.0 | |
SUSE Linux | =15.0 | |
SUSE Linux | =15.1 | |
NetApp Active IQ Unified Manager for VMware vSphere | >=9.5 | |
NetApp SolidFire & HCI Management Node | ||
NetApp SolidFire & HCI Storage Node | ||
All of | ||
NetApp AFF A700s Firmware | ||
NetApp A700 | ||
All of | ||
NetApp CN1610 | ||
NetApp CN1610 Firmware | ||
All of | ||
NetApp H610S Firmware | ||
NetApp H610S Firmware | ||
NetApp AFF A700s Firmware | ||
NetApp A700 | ||
NetApp CN1610 | ||
NetApp CN1610 Firmware | ||
NetApp H610S Firmware | ||
NetApp H610S Firmware | ||
debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.128-1 6.12.17-1 6.12.19-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
CVE-2019-10126 is considered a high severity vulnerability due to its potential for memory corruption.
To mitigate CVE-2019-10126, update to the patched kernel versions as specified in the advisory.
CVE-2019-10126 affects various versions of the Linux kernel, including specific Red Hat and Debian distributions.
Yes, CVE-2019-10126 could potentially be exploited by an attacker to gain unauthorized access.
CVE-2019-10126 primarily impacts systems using affected versions of the Linux kernel, particularly in wireless environments.