CVE-2019-14816: Buffer Overflow
First published: Wed Aug 21 2019(Updated: )
A vulnerability was found in the Linux kernel's Marvell WiFi chip driver. Where, while parsing vendor-specific informational attributes, an attacker on the same WiFi physical network segment could cause a system crash, resulting in a denial of service, or potentially execute arbitrary code. This flaw affects the network interface at the most basic level meaning the attacker only needs to affiliate with the same network device as the vulnerable system to create an attack path.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:3.10.0-1062.12.1.rt56.1042.el7 | 0:3.10.0-1062.12.1.rt56.1042.el7 |
| redhat/kernel-alt | <0:4.14.0-115.17.1.el7a | 0:4.14.0-115.17.1.el7a |
| redhat/kernel | <0:3.10.0-1062.12.1.el7 | 0:3.10.0-1062.12.1.el7 |
| redhat/kernel | <0:3.10.0-327.85.1.el7 | 0:3.10.0-327.85.1.el7 |
| redhat/kernel | <0:3.10.0-514.73.1.el7 | 0:3.10.0-514.73.1.el7 |
| redhat/kernel | <0:3.10.0-693.65.1.el7 | 0:3.10.0-693.65.1.el7 |
| redhat/kernel | <0:3.10.0-862.51.1.el7 | 0:3.10.0-862.51.1.el7 |
| redhat/kernel | <0:3.10.0-957.46.1.el7 | 0:3.10.0-957.46.1.el7 |
| redhat/kernel-rt | <0:4.18.0-147.5.1.rt24.98.el8_1 | 0:4.18.0-147.5.1.rt24.98.el8_1 |
| redhat/kernel | <0:4.18.0-147.5.1.el8_1 | 0:4.18.0-147.5.1.el8_1 |
| redhat/kernel | <0:4.18.0-80.15.1.el8_0 | 0:4.18.0-80.15.1.el8_0 |
| redhat/kernel-rt | <1:3.10.0-693.65.1.rt56.663.el6 | 1:3.10.0-693.65.1.rt56.663.el6 |
| Linux Linux kernel | >=3.6<3.16.74 | |
| Linux Linux kernel | >=3.17<4.4.194 | |
| Linux Linux kernel | >=4.5<4.9.194 | |
| Linux Linux kernel | >=4.10<4.14.146 | |
| Linux Linux kernel | >=4.15<4.19.75 | |
| Linux Linux kernel | >=4.20<5.2.17 | |
| Redhat Virtualization | =4.0 | |
| Redhat Enterprise Linux | =5.0 | |
| Redhat Enterprise Linux | =6.0 | |
| Redhat Enterprise Linux | =6.4 | |
| Redhat Enterprise Linux | =7.0 | |
| Redhat Enterprise Linux | =7.6 | |
| Redhat Enterprise Linux | =8.0 | |
| Redhat Enterprise Linux Compute Node Eus | =7.6 | |
| Redhat Enterprise Linux Eus | =7.6 | |
| Redhat Enterprise Linux Eus | =7.7 | |
| Redhat Enterprise Linux Eus | =8.1 | |
| Redhat Enterprise Linux Eus | =8.2 | |
| Redhat Enterprise Linux Eus | =8.4 | |
| Redhat Enterprise Linux For Power Big Endian Eus | =7.6_ppc64 | |
| Redhat Enterprise Linux For Real Time | =7 | |
| Redhat Enterprise Linux For Real Time | =8 | |
| Redhat Enterprise Linux For Real Time For Nfv | =7 | |
| Redhat Enterprise Linux For Real Time For Nfv | =8 | |
| Redhat Enterprise Linux For Real Time For Nfv Tus | =8.2 | |
| Redhat Enterprise Linux For Real Time For Nfv Tus | =8.4 | |
| Redhat Enterprise Linux For Real Time Tus | =8.2 | |
| Redhat Enterprise Linux For Real Time Tus | =8.4 | |
| Redhat Enterprise Linux Server | =7.6 | |
| Redhat Enterprise Linux Server | =8.0 | |
| Redhat Enterprise Linux Server Aus | =7.2 | |
| Redhat Enterprise Linux Server Aus | =7.3 | |
| Redhat Enterprise Linux Server Aus | =7.6 | |
| Redhat Enterprise Linux Server Aus | =8.2 | |
| Redhat Enterprise Linux Server Aus | =8.4 | |
| Redhat Enterprise Linux Server Tus | =7.3 | |
| Redhat Enterprise Linux Server Tus | =7.6 | |
| Redhat Enterprise Linux Server Tus | =8.2 | |
| Redhat Enterprise Linux Server Tus | =8.4 | |
| Redhat Enterprise Linux Tus | =7.7 | |
| Redhat Messaging Realtime Grid | =2.0 | |
| Redhat Virtualization | =4.2 | |
| Debian Debian Linux | =8.0 | |
| Fedoraproject Fedora | =29 | |
| Fedoraproject Fedora | =30 | |
| Netapp Data Availability Services | ||
| Netapp Hci Management Node | ||
| NetApp Service Processor | ||
| Netapp Solidfire | ||
| Netapp Steelstore Cloud Integrated Storage | ||
| Netapp A700s Firmware | ||
| Netapp A700s | ||
| Netapp A320 Firmware | ||
| Netapp A320 | ||
| Netapp C190 Firmware | ||
| Netapp C190 | ||
| Netapp A220 Firmware | ||
| Netapp A220 | ||
| Netapp Fas2720 Firmware | ||
| Netapp Fas2720 | ||
| Netapp Fas2750 Firmware | ||
| Netapp Fas2750 | ||
| Netapp A800 Firmware | ||
| Netapp A800 | ||
| Netapp H300s Firmware | ||
| Netapp H300s | ||
| Netapp H500s Firmware | ||
| Netapp H500s | ||
| Netapp H700s Firmware | ||
| Netapp H700s | ||
| Netapp H300e Firmware | ||
| Netapp H300e | ||
| Netapp H500e Firmware | ||
| Netapp H500e | ||
| Netapp H700e Firmware | ||
| Netapp H700e | ||
| Netapp H410s Firmware | ||
| Netapp H410s | ||
| Netapp H610s Firmware | ||
| Netapp H610s | ||
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =19.04 | |
| openSUSE Leap | =15.0 | |
| openSUSE Leap | =15.1 | |
| All of | ||
| Netapp A700s Firmware | ||
| Netapp A700s | ||
| All of | ||
| Netapp A320 Firmware | ||
| Netapp A320 | ||
| All of | ||
| Netapp C190 Firmware | ||
| Netapp C190 | ||
| All of | ||
| Netapp A220 Firmware | ||
| Netapp A220 | ||
| All of | ||
| Netapp Fas2720 Firmware | ||
| Netapp Fas2720 | ||
| All of | ||
| Netapp Fas2750 Firmware | ||
| Netapp Fas2750 | ||
| All of | ||
| Netapp A800 Firmware | ||
| Netapp A800 | ||
| All of | ||
| Netapp H300s Firmware | ||
| Netapp H300s | ||
| All of | ||
| Netapp H500s Firmware | ||
| Netapp H500s | ||
| All of | ||
| Netapp H700s Firmware | ||
| Netapp H700s | ||
| All of | ||
| Netapp H300e Firmware | ||
| Netapp H300e | ||
| All of | ||
| Netapp H500e Firmware | ||
| Netapp H500e | ||
| All of | ||
| Netapp H700e Firmware | ||
| Netapp H700e | ||
| All of | ||
| Netapp H410s Firmware | ||
| Netapp H410s | ||
| All of | ||
| Netapp H610s Firmware | ||
| Netapp H610s | ||
| IBM Data Risk Manager | <=2.0.6 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.106-3 6.1.112-1 6.11.4-1 6.11.5-1 |
Remedy
At this time there is no mitigation to the flaw, if you are able to disable wireless and your system is able to work this will be a temporary mitigation until a kernel update is available for installation.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2019-14816 https://nvd.nist.gov/vuln/detail/CVE-2019-14816 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7caac62ed598a196d6ddf8d9c121e12e082cac3a
- https://bugzilla.redhat.com/show_bug.cgi?id=1744149
- https://access.redhat.com/errata/RHSA-2020:0375
- https://access.redhat.com/errata/RHSA-2020:0174
- https://access.redhat.com/errata/RHSA-2020:0374
- https://access.redhat.com/errata/RHSA-2020:0661
- https://access.redhat.com/errata/RHSA-2020:0653
- https://access.redhat.com/errata/RHSA-2020:1347
- https://access.redhat.com/errata/RHSA-2020:1266
- https://access.redhat.com/errata/RHSA-2020:0664
- https://access.redhat.com/errata/RHSA-2020:0328
- https://access.redhat.com/errata/RHSA-2020:0339
- https://access.redhat.com/errata/RHSA-2020:0204
- https://access.redhat.com/errata/RHSA-2020:1353
- https://access.redhat.com/security/cve/cve-2019-14816
- https://github.com/torvalds/linux/commit/7caac62ed598a196d6ddf8d9c121e12e082cac3
- https://www.openwall.com/lists/oss-security/2019/08/28/1
- http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html
- http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
- https://seclists.org/bugtraq/2019/Nov/11
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4JZ6AEUKFWBHQAROGMQARJ274PQP2QP/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3RUDQJXRJQVGHCGR4YZWTQ3ECBI7TXH/
- https://usn.ubuntu.com/4157-1/
- https://usn.ubuntu.com/4157-2/
- https://usn.ubuntu.com/4162-1/
- https://usn.ubuntu.com/4162-2/
- https://usn.ubuntu.com/4163-1/
- https://usn.ubuntu.com/4163-2/
- https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html
- https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html
- http://www.openwall.com/lists/oss-security/2019/08/28/1
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14816
- https://security.netapp.com/advisory/ntap-20191031-0005/
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html
- https://launchpad.net/bugs/cve/CVE-2019-14816
- https://lore.kernel.org/linux-wireless/20190828020751.13625-1-huangwenabc@gmail.com/
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7caac62ed598a196d6ddf8d9c121e12e082cac3a
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1776607
- https://exchange.xforce.ibmcloud.com/vulnerabilities/166017
- https://www.ibm.com/support/pages/node/6335281 (Advisory)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14816
- https://nvd.nist.gov/vuln/detail/CVE-2019-14816
- https://security-tracker.debian.org/tracker/CVE-2019-14816
- https://ubuntu.com/security/CVE-2019-14816
Parent vulnerabilities
(Appears in the following advisories)
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2019-14816
- agent/author
- agent/weakness
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- collector/ibm-support
- source/IBM
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- collector/usn-cve
- source/Ubuntu
- collector/security-tracker-debian
- source/Debian
- agent/remedy
- agent/references
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- package-manager/redhat
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/3.6
- version/linux linux kernel/3.17
- version/linux linux kernel/4.5
- version/linux linux kernel/4.10
- version/linux linux kernel/4.15
- version/linux linux kernel/4.20
- vendor/redhat
- canonical/redhat virtualization
- version/redhat virtualization/4.0
- canonical/redhat enterprise linux
- version/redhat enterprise linux/5.0
- version/redhat enterprise linux/6.0
- version/redhat enterprise linux/6.4
- version/redhat enterprise linux/7.0
- version/redhat enterprise linux/7.6
- version/redhat enterprise linux/8.0
- canonical/redhat enterprise linux compute node eus
- version/redhat enterprise linux compute node eus/7.6
- canonical/redhat enterprise linux eus
- version/redhat enterprise linux eus/7.6
- version/redhat enterprise linux eus/7.7
- version/redhat enterprise linux eus/8.1
- version/redhat enterprise linux eus/8.2
- version/redhat enterprise linux eus/8.4
- canonical/redhat enterprise linux for power big endian eus
- version/redhat enterprise linux for power big endian eus/7.6_ppc64
- canonical/redhat enterprise linux for real time
- version/redhat enterprise linux for real time/7
- version/redhat enterprise linux for real time/8
- canonical/redhat enterprise linux for real time for nfv
- version/redhat enterprise linux for real time for nfv/7
- version/redhat enterprise linux for real time for nfv/8
- canonical/redhat enterprise linux for real time for nfv tus
- version/redhat enterprise linux for real time for nfv tus/8.2
- version/redhat enterprise linux for real time for nfv tus/8.4
- canonical/redhat enterprise linux for real time tus
- version/redhat enterprise linux for real time tus/8.2
- version/redhat enterprise linux for real time tus/8.4
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/7.6
- version/redhat enterprise linux server/8.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/7.2
- version/redhat enterprise linux server aus/7.3
- version/redhat enterprise linux server aus/7.6
- version/redhat enterprise linux server aus/8.2
- version/redhat enterprise linux server aus/8.4
- canonical/redhat enterprise linux server tus
- version/redhat enterprise linux server tus/7.3
- version/redhat enterprise linux server tus/7.6
- version/redhat enterprise linux server tus/8.2
- version/redhat enterprise linux server tus/8.4
- canonical/redhat enterprise linux tus
- version/redhat enterprise linux tus/7.7
- canonical/redhat messaging realtime grid
- version/redhat messaging realtime grid/2.0
- version/redhat virtualization/4.2
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/29
- version/fedoraproject fedora/30
- vendor/netapp
- canonical/netapp data availability services
- canonical/netapp hci management node
- canonical/netapp service processor
- canonical/netapp solidfire
- canonical/netapp steelstore cloud integrated storage
- canonical/netapp a700s firmware
- canonical/netapp a700s
- canonical/netapp a320 firmware
- canonical/netapp a320
- canonical/netapp c190 firmware
- canonical/netapp c190
- canonical/netapp a220 firmware
- canonical/netapp a220
- canonical/netapp fas2720 firmware
- canonical/netapp fas2720
- canonical/netapp fas2750 firmware
- canonical/netapp fas2750
- canonical/netapp a800 firmware
- canonical/netapp a800
- canonical/netapp h300s firmware
- canonical/netapp h300s
- canonical/netapp h500s firmware
- canonical/netapp h500s
- canonical/netapp h700s firmware
- canonical/netapp h700s
- canonical/netapp h300e firmware
- canonical/netapp h300e
- canonical/netapp h500e firmware
- canonical/netapp h500e
- canonical/netapp h700e firmware
- canonical/netapp h700e
- canonical/netapp h410s firmware
- canonical/netapp h410s
- canonical/netapp h610s firmware
- canonical/netapp h610s
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/19.04
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/15.0
- version/opensuse leap/15.1
- vendor/ibm
- canonical/ibm data risk manager
- version/ibm data risk manager/2.0.6
- package-manager/debian