{"id":"CVE-2019-16746","details":"An issue was discovered in net/wireless/nl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.","aliases":["A-145728612","ASB-A-145728612"],"modified":"2026-03-15T22:27:18.390881Z","published":"2019-09-24T06:15:10.400Z","related":["SUSE-SU-2019:3389-1","SUSE-SU-2020:0093-1","SUSE-SU-2020:0511-1","SUSE-SU-2020:0560-1","SUSE-SU-2020:0613-1","SUSE-SU-2020:0667-1","SUSE-SU-2020:2106-1","SUSE-SU-2020:2107-1","SUSE-SU-2020:2119-1","SUSE-SU-2020:2121-1","SUSE-SU-2020:2122-1","SUSE-SU-2020:2156-1","SUSE-SU-2020:2478-1","SUSE-SU-2020:2491-1","SUSE-SU-2020:2492-1","SUSE-SU-2020:2497-1","SUSE-SU-2020:2498-1","SUSE-SU-2020:2499-1","SUSE-SU-2020:2502-1","SUSE-SU-2020:2505-1","SUSE-SU-2020:2506-1","SUSE-SU-2020:2507-1","SUSE-SU-2020:2508-1","SUSE-SU-2020:2509-1","SUSE-SU-2020:2513-1","SUSE-SU-2020:2524-1","SUSE-SU-2020:2526-1","SUSE-SU-2020:2576-1","SUSE-SU-2020:2582-1","SUSE-SU-2021:14630-1","openSUSE-SU-2020:0336-1","openSUSE-SU-2020:1153-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TASE2ESEZAER6DTZH3DJ4K2JNO46TVL7/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4186-1/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4209-1/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4210-1/"},{"type":"ADVISORY","url":"https://www.oracle.com/security-alerts/cpuApr2021.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00021.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00009.html"},{"type":"ADVISORY","url":"http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20191031-0005/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4183-1/"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html"},{"type":"ADVISORY","url":"https://seclists.org/bugtraq/2019/Nov/11"},{"type":"FIX","url":"https://marc.info/?l=linux-wireless&m=156901391225058&w=2"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"2.6.25"},{"fixed":"3.16.79"}]},{"events":[{"introduced":"3.17"},{"fixed":"4.4.197"}]},{"events":[{"introduced":"4.5"},{"fixed":"4.9.197"}]},{"events":[{"introduced":"4.10"},{"fixed":"4.14.149"}]},{"events":[{"introduced":"4.15"},{"fixed":"4.19.79"}]},{"events":[{"introduced":"4.20"},{"fixed":"5.3.6"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]},{"events":[{"introduced":"0"},{"last_affected":"18.04"}]},{"events":[{"introduced":"0"},{"last_affected":"19.04"}]},{"events":[{"introduced":"0"},{"last_affected":"19.10"}]},{"events":[{"introduced":"0"},{"last_affected":"30"}]},{"events":[{"introduced":"0"},{"last_affected":"15.1"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16746.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}