An array overflow was discovered in mt76_add_fragment in drivers/net/wireless/mediatek/mt76/dma.c in the Linux kernel before 5.5.10, aka CID-b102f0c522cf. An oversized packet with too many rx fragments can corrupt memory of adjacent pages.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-04-29T18:52:38
Updated: 2024-08-04T11:56:52.066Z
Reserved: 2020-04-29T00:00:00
Link: CVE-2020-12465
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-04-29T19:15:12.907
Modified: 2023-10-12T13:31:35.020
Link: CVE-2020-12465
Redhat