CVE-2019-16746

CRITICAL

Linux kernel <5.2.17 - Buffer Overflow

Title source: llm

Description

An issue was discovered in net/wireless/nl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.

Exploits (1)

nomisec WORKING POC
by uthrasri · poc
https://github.com/uthrasri/CVE-2019-16746

References (14)

Scores

CVSS v3 9.8
EPSS 0.0260
EPSS Percentile 85.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-120
Status published
Products (8)
canonical/ubuntu_linux 16.04
canonical/ubuntu_linux 18.04
canonical/ubuntu_linux 19.04
canonical/ubuntu_linux 19.10
debian/debian_linux 8.0
fedoraproject/fedora 30
linux/linux_kernel 2.6.25 - 3.16.79
opensuse/leap 15.1
Published Sep 24, 2019
Tracked Since Feb 18, 2026