Severity Rating: HIGH
Software Affected
Linux kernel through 5.3.6
Overview
Vulnerability has been reported in Linux which could allow an attacker to
access sensitive information on a targeted system.
Description
This vulnerability exists due to Realtek Wi-Fi chips model in Linux
devices. An attacker could exploit this vulnerability by rtlwifi driver
that mainly supports the Realtek Wi-Fi chips model used in Linux devices.
Successful exploitation of this vulnerability could allow an attacker to
compromise a system using nearby Wi-Fi devices.
Solution
Apply appropriate updates as mentioned in the following URL:
https://lkml.org/lkml/2019/10/16/1226
Vendor Information
Linux
https://lkml.org/lkml/2019/10/16/1226
References
Linux
https://lkml.org/lkml/2019/10/16/1226
https://arstechnica.com/information-technology/2019/10/unpatched-linux-flaw
- -may-let-attackers-crash-or-compromise-nearby-devices/
CVE Name
CVE-2019-17666
Software Affected
Linux kernel through 5.3.6
Overview
Vulnerability has been reported in Linux which could allow an attacker to
access sensitive information on a targeted system.
Description
This vulnerability exists due to Realtek Wi-Fi chips model in Linux
devices. An attacker could exploit this vulnerability by rtlwifi driver
that mainly supports the Realtek Wi-Fi chips model used in Linux devices.
Successful exploitation of this vulnerability could allow an attacker to
compromise a system using nearby Wi-Fi devices.
Solution
Apply appropriate updates as mentioned in the following URL:
https://lkml.org/lkml/2019/10/16/1226
Vendor Information
Linux
https://lkml.org/lkml/2019/10/16/1226
References
Linux
https://lkml.org/lkml/2019/10/16/1226
https://arstechnica.com/information-technology/2019/10/unpatched-linux-flaw
- -may-let-attackers-crash-or-compromise-nearby-devices/
CVE Name
CVE-2019-17666
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.
![Fwd: [CIAD-2020-0036] Multiple vulnerabilities in Apple iOS and iPadOS](http://3.bp.blogspot.com/-ZRo8fwgs65M/UZC2jMJpcLI/AAAAAAAAC5Y/EfoFQsr1wzU/s1600/BS+No+Image.gif )