CVE-2020-12654: Buffer Overflow
First published: Mon Jan 27 2020(Updated: )
A flaw was found in the Linux kernel. The Marvell mwifiex driver allows a remote WiFi access point to trigger a heap-based memory buffer overflow due to an incorrect memcpy operation. The highest threat from this vulnerability is to data integrity and system availability.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:3.10.0-1127.18.2.rt56.1116.el7 | 0:3.10.0-1127.18.2.rt56.1116.el7 |
| redhat/kernel | <0:3.10.0-1127.18.2.el7 | 0:3.10.0-1127.18.2.el7 |
| redhat/kernel | <0:3.10.0-327.90.2.el7 | 0:3.10.0-327.90.2.el7 |
| redhat/kernel | <0:3.10.0-514.78.1.el7 | 0:3.10.0-514.78.1.el7 |
| redhat/kernel | <0:3.10.0-693.72.1.el7 | 0:3.10.0-693.72.1.el7 |
| redhat/kernel | <0:3.10.0-957.58.2.el7 | 0:3.10.0-957.58.2.el7 |
| redhat/kernel | <0:3.10.0-1062.31.2.el7 | 0:3.10.0-1062.31.2.el7 |
| redhat/kernel-rt | <0:4.18.0-193.13.2.rt13.65.el8_2 | 0:4.18.0-193.13.2.rt13.65.el8_2 |
| redhat/kernel | <0:4.18.0-193.13.2.el8_2 | 0:4.18.0-193.13.2.el8_2 |
| redhat/kernel | <0:4.18.0-80.27.1.el8_0 | 0:4.18.0-80.27.1.el8_0 |
| redhat/kernel | <0:4.18.0-147.24.2.el8_1 | 0:4.18.0-147.24.2.el8_1 |
| redhat/kernel-rt | <1:3.10.0-693.72.1.rt56.672.el6 | 1:3.10.0-693.72.1.rt56.672.el6 |
| Linux Linux kernel | <5.5.4 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.115-1 6.1.119-1 6.11.10-1 6.12.5-1 |
Remedy
In order to mitigate this issue, it is possible to prevent the affected code from being loaded by blacklisting the kernel module mwifiex. For instructions relating to how to blacklist a kernel module, refer to: https://access.redhat.com/solutions/41278
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-12654 https://nvd.nist.gov/vuln/detail/CVE-2020-12654
- https://bugzilla.redhat.com/show_bug.cgi?id=1832530
- https://access.redhat.com/errata/RHSA-2020:3221
- https://access.redhat.com/errata/RHSA-2020:3220
- https://access.redhat.com/errata/RHSA-2020:3232
- https://access.redhat.com/errata/RHSA-2020:2832
- https://access.redhat.com/errata/RHSA-2020:3432
- https://access.redhat.com/errata/RHSA-2020:3226
- https://access.redhat.com/errata/RHSA-2020:3224
- https://access.redhat.com/errata/RHSA-2020:3016
- https://access.redhat.com/errata/RHSA-2020:3010
- https://access.redhat.com/errata/RHSA-2020:3041
- https://access.redhat.com/errata/RHSA-2020:3222
- https://access.redhat.com/errata/RHSA-2020:3389
- https://access.redhat.com/security/cve/cve-2020-12654
- http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html
- http://www.openwall.com/lists/oss-security/2020/05/08/2
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.4
- https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=3a9b153c5591548612c3955c9600a98150c81875
- https://github.com/torvalds/linux/commit/3a9b153c5591548612c3955c9600a98150c81875
- https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html
- https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html
- https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html
- https://security.netapp.com/advisory/ntap-20200608-0001/
- https://usn.ubuntu.com/4392-1/
- https://usn.ubuntu.com/4393-1/
- https://www.debian.org/security/2020/dsa-4698
- https://launchpad.net/bugs/cve/CVE-2020-12654
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1832531
- https://access.redhat.com/solutions/41278
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654
- https://nvd.nist.gov/vuln/detail/CVE-2020-12654
- https://security-tracker.debian.org/tracker/CVE-2020-12654
- https://ubuntu.com/security/CVE-2020-12654
- https://git.kernel.org/linus/3a9b153c5591548612c3955c9600a98150c81875
Parent vulnerabilities
(Appears in the following advisories)
- collector/redhat-cve
- collector/nvd-index
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-12654
- agent/first-publish-date
- agent/author
- agent/severity
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/references
- agent/tags
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/event
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/trending
- package-manager/redhat
- vendor/linux
- canonical/linux linux kernel
- package-manager/debian