CVE-2019-14814

CVSS v3.1 7.8 (High)

CVSS v2.0 7.2 (High)

EPSS 0.04 % (17^th)

Affected Products 50

Advisories 42

There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.

Weaknesses

CWE-122: Heap-based Buffer Overflow
CWE-787: Out-of-bounds Write

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2019-09-20 19:15:11
(5 years ago)
Updated Date: 2023-09-28 19:09:03
(11 months ago)

Affected Products

Netapp

Opensuse

Leap

Redhat

Configuration #1

	CPE23	From	Up To
Linux Kernel from 3.7 version and prior 3.16.74 version	cpe:2.3:o:linux:linux_kernel	>= 3.7	< 3.16.74
Linux Kernel from 3.17 version and prior 4.4.194 version	cpe:2.3:o:linux:linux_kernel	>= 3.17	< 4.4.194
Linux Kernel from 4.5 version and prior 4.9.194 version	cpe:2.3:o:linux:linux_kernel	>= 4.5	< 4.9.194
Linux Kernel from 4.10 version and prior 4.14.146 version	cpe:2.3:o:linux:linux_kernel	>= 4.10	< 4.14.146
Linux Kernel from 4.15 version and prior 4.19.75 version	cpe:2.3:o:linux:linux_kernel	>= 4.15	< 4.19.75
Linux Kernel from 4.20 version and prior 5.2.17 version	cpe:2.3:o:linux:linux_kernel	>= 4.20	< 5.2.17

Configuration #2

		CPE23	From	Up To
	Redhat Enterprise Linux 5.0	cpe:2.3:o:redhat:enterprise_linux:5.0
	Redhat Enterprise Linux 6.0	cpe:2.3:o:redhat:enterprise_linux:6.0
	Redhat Enterprise Linux 7.0	cpe:2.3:o:redhat:enterprise_linux:7.0
	Redhat Enterprise Linux 8.0	cpe:2.3:o:redhat:enterprise_linux:8.0
	Redhat Enterprise Linux Eus 8.1	cpe:2.3:o:redhat:enterprise_linux_eus:8.1
	Redhat Enterprise Linux Eus 8.2	cpe:2.3:o:redhat:enterprise_linux_eus:8.2
	Redhat Enterprise Linux Eus 8.4	cpe:2.3:o:redhat:enterprise_linux_eus:8.4
	Redhat Enterprise Linux for Real Time 8	cpe:2.3:o:redhat:enterprise_linux_for_real_time:8
	Redhat Enterprise Linux for Real Time For Nfv 8	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:8
	Redhat Enterprise Linux for Real Time For Nfv Tus 8.2	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2
	Redhat Enterprise Linux for Real Time For Nfv Tus 8.4	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.4
	Redhat Enterprise Linux for Real Time Tus 8.2	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2
	Redhat Enterprise Linux for Real Time Tus 8.4	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.4
	Redhat Enterprise Linux Server Aus 8.2	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2
	Redhat Enterprise Linux Server Aus 8.4	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4
	Redhat Enterprise Linux Server Tus 8.2	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2
	Redhat Enterprise Linux Server Tus 8.4	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4
	Redhat Messaging Realtime Grid 2.0	cpe:2.3:o:redhat:messaging_realtime_grid:2.0

Configuration #3

		CPE23	From	Up To
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0

Configuration #4

		CPE23	From	Up To
	Canonical Ubuntu Linux 14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04:::*:esm
	Canonical Ubuntu Linux 16.04	cpe:2.3:o:canonical:ubuntu_linux:16.04:::*:esm
	Canonical Ubuntu Linux 18.04	cpe:2.3:o:canonical:ubuntu_linux:18.04:::*:lts
	Canonical Ubuntu Linux 19.04	cpe:2.3:o:canonical:ubuntu_linux:19.04

Configuration #5

		CPE23	From	Up To
	Opensuse Leap 15.0	cpe:2.3:o:opensuse:leap:15.0
	Opensuse Leap 15.1	cpe:2.3:o:opensuse:leap:15.1

Configuration #6

		CPE23	From	Up To
	Netapp Data Availability Services	cpe:2.3:a:netapp:data_availability_services:-
	Netapp Hci Management Node	cpe:2.3:a:netapp:hci_management_node:-
	Netapp Service Processor	cpe:2.3:a:netapp:service_processor:-
	Netapp Solidfire	cpe:2.3:a:netapp:solidfire:-
	Netapp Steelstore Cloud Integrated Storage	cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-

Configuration #7

AND

		CPE23
OR
	Netapp A700s Firmware	cpe:2.3:o:netapp:a700s_firmware:-
OR
	Running on/with
	Netapp A700s	cpe:2.3:h:netapp:a700s:-

Configuration #8

AND

		CPE23
OR
	Netapp A320 Firmware	cpe:2.3:o:netapp:a320_firmware:-
OR
	Running on/with
	Netapp A320	cpe:2.3:h:netapp:a320:-

Configuration #9

AND

		CPE23
OR
	Netapp C190 Firmware	cpe:2.3:o:netapp:c190_firmware:-
OR
	Running on/with
	Netapp C190	cpe:2.3:h:netapp:c190:-

Configuration #10

AND

		CPE23
OR
	Netapp A220 Firmware	cpe:2.3:o:netapp:a220_firmware:-
OR
	Running on/with
	Netapp A220	cpe:2.3:h:netapp:a220:-

Configuration #11

AND

		CPE23
OR
	Netapp Fas2720 Firmware	cpe:2.3:o:netapp:fas2720_firmware:-
OR
	Running on/with
	Netapp Fas2720	cpe:2.3:h:netapp:fas2720:-

Configuration #12

AND

		CPE23
OR
	Netapp Fas2750 Firmware	cpe:2.3:o:netapp:fas2750_firmware:-
OR
	Running on/with
	Netapp Fas2750	cpe:2.3:h:netapp:fas2750:-

Configuration #13

AND

		CPE23
OR
	Netapp A800 Firmware	cpe:2.3:o:netapp:a800_firmware:-
OR
	Running on/with
	Netapp A800	cpe:2.3:h:netapp:a800:-

Configuration #14

AND

		CPE23
OR
	Netapp H300s Firmware	cpe:2.3:o:netapp:h300s_firmware:-
OR
	Running on/with
	Netapp H300s	cpe:2.3:h:netapp:h300s:-

Configuration #15

AND

		CPE23
OR
	Netapp H500s Firmware	cpe:2.3:o:netapp:h500s_firmware:-
OR
	Running on/with
	Netapp H500s	cpe:2.3:h:netapp:h500s:-

Configuration #16

AND

		CPE23
OR
	Netapp H700s Firmware	cpe:2.3:o:netapp:h700s_firmware:-
OR
	Running on/with
	Netapp H700s	cpe:2.3:h:netapp:h700s:-

Configuration #17

AND

		CPE23
OR
	Netapp H300e Firmware	cpe:2.3:o:netapp:h300e_firmware:-
OR
	Running on/with
	Netapp H300e	cpe:2.3:h:netapp:h300e:-

Configuration #18

AND

		CPE23
OR
	Netapp H500e Firmware	cpe:2.3:o:netapp:h500e_firmware:-
OR
	Running on/with
	Netapp H500e	cpe:2.3:h:netapp:h500e:-

Configuration #19

AND

		CPE23
OR
	Netapp H700e Firmware	cpe:2.3:o:netapp:h700e_firmware:-
OR
	Running on/with
	Netapp H700e	cpe:2.3:h:netapp:h700e:-

Configuration #20

AND

		CPE23
OR
	Netapp H410s Firmware	cpe:2.3:o:netapp:h410s_firmware:-
OR
	Running on/with
	Netapp H410s	cpe:2.3:h:netapp:h410s:-

Configuration #21

AND

		CPE23
OR
	Netapp H410c Firmware	cpe:2.3:o:netapp:h410c_firmware:-
OR
	Running on/with
	Netapp H410c	cpe:2.3:h:netapp:h410c:-

Configuration #22

AND

		CPE23
OR
	Netapp H610s Firmware	cpe:2.3:o:netapp:h610s_firmware:-
OR
	Running on/with
	Netapp H610s	cpe:2.3:h:netapp:h610s:-