MGASA-2019-0306

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2019-17666

Published: 29 Oct 2019, 14:54

Last modified:16 Apr 2026, 04:26

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

29 Oct 2019, 14:54

Published

Vulnerability first disclosed

16 Apr 2026, 04:26

Last Modified

Vulnerability information updated

Description

Updated kernel packages fix security vulnerabilities This kernel update is based on the upstream 5.3.7 and fixes several issues: * various security issues in the usb subsystem * rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666) Other issues fixed by this update: * Xorg displays a black screen with kernel > 5.2.x on some Intel GPUs (mga#25546) * Firmware crash with Intel(R) Dual Band Wireless AC 3168 (mga#25609) * a fix for an MTRR bug for intel-lpss-pci causing at least some Ice Lake laptops to not boot For other upstream fixes in this update, see the referenced changelog.

Affected Systems

mageia•kernel
< 5.3.7-4.mga7
mageia•kmod-virtualbox
< 6.0.14-4.mga7
mageia•kmod-xtables-addons
< 3.5-6.mga7

MGASA-2019-0306

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)