A memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering nl80211hdr_put() failures, aka CID-1399c59fa929. NOTE: third parties dispute the relevance of this because it occurs on a code path where a successful allocation has already occurred
References
Link | Resource |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1157319 | Issue Tracking Third Party Advisory |
https://github.com/torvalds/linux/commit/1399c59fa92984836db90538cf92397fe7caaa57 | Patch Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3PSDE6PTOTVBK2YTKB2TFQP2SUBVSNF/ | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PY7LJMSPAGRIKABJPDKQDTXYW3L5RX2T/ | |
https://usn.ubuntu.com/4225-1/ | Third Party Advisory |
https://usn.ubuntu.com/4225-2/ | Third Party Advisory |
https://usn.ubuntu.com/4226-1/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-11-18T05:23:54
Updated: 2020-01-23T17:06:06
Reserved: 2019-11-18T00:00:00
Link: CVE-2019-19055
JSON object: View
NVD Information
Status : Modified
Published: 2019-11-18T06:15:12.030
Modified: 2024-05-17T01:35:10.227
Link: CVE-2019-19055
JSON object: View
Redhat Information
No data.
CWE