Buffer Overflow Vulnerability in cfg80211_mgd_wext_giwessid in Linux Kernel through 5.3.2

Buffer Overflow Vulnerability in cfg80211_mgd_wext_giwessid in Linux Kernel through 5.3.2

CVE-2019-17133 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.