vulnerability
Ubuntu: (Multiple Advisories) (CVE-2019-9500): Linux kernel vulnerabilities
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
8 | (AV:A/AC:M/Au:N/C:C/I:C/A:C) | May 14, 2019 | May 15, 2019 | Nov 7, 2024 |
Description
The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmf_wowl_nd_results function. This vulnerability can be exploited with compromised chipsets to compromise the host, or when used in combination with CVE-2019-9503, can be used remotely. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. More typically, this vulnerability will result in denial-of-service conditions.
Solution(s)
References
- CVE-2019-9500
- https://attackerkb.com/topics/CVE-2019-9500
- NVD-CVE-2019-9500
- UBUNTU-USN-3932-1
- UBUNTU-USN-3932-2
- UBUNTU-USN-3977-1
- UBUNTU-USN-3977-2
- UBUNTU-USN-3977-3
- UBUNTU-USN-3978-1
- UBUNTU-USN-3979-1
- UBUNTU-USN-3980-1
- UBUNTU-USN-3980-2
- UBUNTU-USN-3981-1
- UBUNTU-USN-3981-2
- UBUNTU-USN-3982-1
- UBUNTU-USN-3982-2
- UBUNTU-USN-3983-1
- UBUNTU-USN-3983-2
- UBUNTU-USN-3984-1
- UBUNTU-USN-3985-1
- UBUNTU-USN-3985-2
- UBUNTU-USN-4076-1
- UBUNTU-USN-4095-1

Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.