← Retour aux CVEs

CVE-2019-14901

CRITICAL

9.8

Description

A heap overflow flaw was found in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The vulnerability allows a remote attacker to cause a system crash, resulting in a denial of service, or execute arbitrary code. The highest threat with this vulnerability is with the availability of the system. If code execution occurs, the code will run with the permissions of root. This will affect both confidentiality and integrity of files on the system.

Details CVE

Score CVSS v3.19.8

SeveriteCRITICAL

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie11/29/2019

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

canonical:ubuntu_linuxdebian:debian_linuxfedoraproject:fedoralinux:linux_kernel

Faiblesses (CWE)

CWE-122CWE-400CWE-787

References

http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html(secalert@redhat.com)

http://packetstormsecurity.com/files/155879/Kernel-Live-Patch-Security-Notice-LSN-0061-1.html(secalert@redhat.com)

http://packetstormsecurity.com/files/156185/Kernel-Live-Patch-Security-Notice-LSN-0062-1.html(secalert@redhat.com)

https://access.redhat.com/errata/RHSA-2020:0204(secalert@redhat.com)

https://access.redhat.com/errata/RHSA-2020:0328(secalert@redhat.com)

https://access.redhat.com/errata/RHSA-2020:0339(secalert@redhat.com)

https://access.redhat.com/errata/RHSA-2020:0374(secalert@redhat.com)

https://access.redhat.com/errata/RHSA-2020:0375(secalert@redhat.com)

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14901(secalert@redhat.com)

https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html(secalert@redhat.com)

https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html(secalert@redhat.com)

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D4ISVNIC44SOGXTUBCIZFSUNQJ5LRKNZ/(secalert@redhat.com)

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MN6MLCN7G7VFTSXSZYXKXEFCUMFBUAXQ/(secalert@redhat.com)

https://usn.ubuntu.com/4225-1/(secalert@redhat.com)

https://usn.ubuntu.com/4225-2/(secalert@redhat.com)

https://usn.ubuntu.com/4226-1/(secalert@redhat.com)

https://usn.ubuntu.com/4227-1/(secalert@redhat.com)

https://usn.ubuntu.com/4227-2/(secalert@redhat.com)

https://usn.ubuntu.com/4228-1/(secalert@redhat.com)

https://usn.ubuntu.com/4228-2/(secalert@redhat.com)

http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html(af854a3a-2127-422b-91ae-364da2661108)

http://packetstormsecurity.com/files/155879/Kernel-Live-Patch-Security-Notice-LSN-0061-1.html(af854a3a-2127-422b-91ae-364da2661108)

http://packetstormsecurity.com/files/156185/Kernel-Live-Patch-Security-Notice-LSN-0062-1.html(af854a3a-2127-422b-91ae-364da2661108)

https://access.redhat.com/errata/RHSA-2020:0204(af854a3a-2127-422b-91ae-364da2661108)

https://access.redhat.com/errata/RHSA-2020:0328(af854a3a-2127-422b-91ae-364da2661108)

https://access.redhat.com/errata/RHSA-2020:0339(af854a3a-2127-422b-91ae-364da2661108)

https://access.redhat.com/errata/RHSA-2020:0374(af854a3a-2127-422b-91ae-364da2661108)

https://access.redhat.com/errata/RHSA-2020:0375(af854a3a-2127-422b-91ae-364da2661108)

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14901(af854a3a-2127-422b-91ae-364da2661108)

https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html(af854a3a-2127-422b-91ae-364da2661108)

https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html(af854a3a-2127-422b-91ae-364da2661108)

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D4ISVNIC44SOGXTUBCIZFSUNQJ5LRKNZ/(af854a3a-2127-422b-91ae-364da2661108)

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MN6MLCN7G7VFTSXSZYXKXEFCUMFBUAXQ/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4225-1/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4225-2/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4226-1/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4227-1/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4227-2/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4228-1/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4228-2/(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.