CVE-2019-14816: Buffer Overflow

First published: Wed Aug 21 2019(Updated: )

Linux Kernel is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by mwifiex_update_vs_ie() function of Marvell Wifi Driver. By sending a specially-crafted packet, a local attacker could overflow a buffer and execute arbitrary code on the system or cause the system to crash.

Credit: secalert@redhat.com secalert@redhat.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/redhat-cve
• collector/ibm-support
• collector/nvd-index
• agent/type
• agent/first-publish-date
• agent/last-modified-date
• collector/launchpad-cve
• source/Launchpad
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2019-14816
• agent/author
• agent/remedy
• agent/weakness
• agent/severity
• agent/description
• collector/nvd-cve
• source/NVD
• agent/software-canonical-lookup
• agent/event
• agent/softwarecombine
• collector/usn-cve
• source/Ubuntu
• agent/references
• agent/tags
• collector/security-tracker-debian
• source/Debian
• package-manager/redhat
• vendor/ibm
• canonical/ibm data risk manager
• version/ibm data risk manager/2.0.6
• vendor/linux
• canonical/linux linux kernel
• version/linux linux kernel/3.6
• version/linux linux kernel/3.17
• version/linux linux kernel/4.5
• version/linux linux kernel/4.10
• version/linux linux kernel/4.15
• version/linux linux kernel/4.20
• vendor/redhat
• canonical/redhat virtualization
• version/redhat virtualization/4.0
• canonical/redhat enterprise linux
• version/redhat enterprise linux/5.0
• version/redhat enterprise linux/6.0
• version/redhat enterprise linux/6.4
• version/redhat enterprise linux/7.0
• version/redhat enterprise linux/7.6
• version/redhat enterprise linux/8.0
• canonical/redhat enterprise linux compute node eus
• version/redhat enterprise linux compute node eus/7.6
• canonical/redhat enterprise linux eus
• version/redhat enterprise linux eus/7.6
• version/redhat enterprise linux eus/7.7
• version/redhat enterprise linux eus/8.1
• version/redhat enterprise linux eus/8.2
• version/redhat enterprise linux eus/8.4
• canonical/redhat enterprise linux for power big endian eus
• version/redhat enterprise linux for power big endian eus/7.6_ppc64
• canonical/redhat enterprise linux for real time
• version/redhat enterprise linux for real time/7
• version/redhat enterprise linux for real time/8
• canonical/redhat enterprise linux for real time for nfv
• version/redhat enterprise linux for real time for nfv/7
• version/redhat enterprise linux for real time for nfv/8
• canonical/redhat enterprise linux for real time for nfv tus
• version/redhat enterprise linux for real time for nfv tus/8.2
• version/redhat enterprise linux for real time for nfv tus/8.4
• canonical/redhat enterprise linux for real time tus
• version/redhat enterprise linux for real time tus/8.2
• version/redhat enterprise linux for real time tus/8.4
• canonical/redhat enterprise linux server
• version/redhat enterprise linux server/7.6
• version/redhat enterprise linux server/8.0
• canonical/redhat enterprise linux server aus
• version/redhat enterprise linux server aus/7.2
• version/redhat enterprise linux server aus/7.3
• version/redhat enterprise linux server aus/7.6
• version/redhat enterprise linux server aus/8.2
• version/redhat enterprise linux server aus/8.4
• canonical/redhat enterprise linux server tus
• version/redhat enterprise linux server tus/7.3
• version/redhat enterprise linux server tus/7.6
• version/redhat enterprise linux server tus/8.2
• version/redhat enterprise linux server tus/8.4
• canonical/redhat enterprise linux tus
• version/redhat enterprise linux tus/7.7
• canonical/redhat messaging realtime grid
• version/redhat messaging realtime grid/2.0
• version/redhat virtualization/4.2
• vendor/debian
• canonical/debian debian linux
• version/debian debian linux/8.0
• vendor/fedoraproject
• canonical/fedoraproject fedora
• version/fedoraproject fedora/29
• version/fedoraproject fedora/30
• vendor/netapp
• canonical/netapp data availability services
• canonical/netapp hci management node
• canonical/netapp service processor
• canonical/netapp solidfire
• canonical/netapp steelstore cloud integrated storage
• canonical/netapp a700s firmware
• canonical/netapp a700s
• canonical/netapp a320 firmware
• canonical/netapp a320
• canonical/netapp c190 firmware
• canonical/netapp c190
• canonical/netapp a220 firmware
• canonical/netapp a220
• canonical/netapp fas2720 firmware
• canonical/netapp fas2720
• canonical/netapp fas2750 firmware
• canonical/netapp fas2750
• canonical/netapp a800 firmware
• canonical/netapp a800
• canonical/apple macos ventura
• canonical/apple macos big sur
• canonical/apple macos monterey
• canonical/netapp h300e firmware
• canonical/netapp h300e
• canonical/netapp h500e firmware
• canonical/netapp h500e
• canonical/netapp h700e firmware
• canonical/netapp h700e
• canonical/netapp h610s firmware
• canonical/netapp h610s
• vendor/canonical
• canonical/canonical ubuntu linux
• version/canonical ubuntu linux/14.04
• version/canonical ubuntu linux/16.04
• version/canonical ubuntu linux/18.04
• version/canonical ubuntu linux/19.04
• vendor/opensuse
• canonical/opensuse leap
• version/opensuse leap/15.0
• version/opensuse leap/15.1
• package-manager/ubuntu
• package-manager/debian