CVE-2017-11089
Description
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed in nl80211_set_station when user space application sends attribute NL80211_ATTR_LOCAL_MESH_POWER_MODE with data of size less than 4 bytes
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.643
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-3620-1) linux-image-3.13.0-144-generic_3.13.0-144.193_i386.deb | Linux |
| Linux kernel (USN-3620-1) linux-image-3.13.0-144-generic_3.13.0-144.193_amd64.deb | Linux |
| Linux kernel (USN-3620-1) linux-image-3.13.0-144-lowlatency_3.13.0-144.193_i386.deb | Linux |
| Linux kernel (USN-3620-1) linux-image-3.13.0-144-lowlatency_3.13.0-144.193_amd64.deb | Linux |
| Kernel-uek update (ELSA-2021-9473) kernel-uek-4.1.12-124.56.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2021-9473) kernel-uek-debug-4.1.12-124.56.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2021-9473) kernel-uek-debug-devel-4.1.12-124.56.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2021-9473) kernel-uek-devel-4.1.12-124.56.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2021-9473) kernel-uek-doc-4.1.12-124.56.1.el7uek.noarch.rpm | Linux |
| Kernel-uek-firmware update (ELSA-2021-9473) kernel-uek-firmware-4.1.12-124.56.1.el7uek.noarch.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234