APPLIED[Unstable]: [PATCH 0/1][SRU][X/B/D/E] CVE-2019-17666: rtlwifi buffer overflow
Seth Forshee
seth.forshee at canonical.com
Tue Oct 22 20:35:02 UTC 2019
On Fri, Oct 18, 2019 at 07:13:02AM +0000, Tyler Hicks wrote:
> https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-17666.html
>
> rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the
> Linux kernel through 5.3.6 lacks a certain upper-bound check, leading
> to a buffer overflow.
>
> I've followed the suggestion from the rtlwifi maintainer here:
>
> https://lore.kernel.org/lkml/5B2DA6FDDF928F4E855344EE0A5C39D1D5C84368@RTITMBSVM04.realtek.com.tw/
>
> A fix is not yet available upstream, which is why this is labeled a
> SAUCE patch.
>
> Clean cherry pick to all releases. Build tested with clean build logs.
Applied to unstable/master, thanks!
More information about the kernel-team
mailing list