High severity7.5NVD Advisory· Published Nov 16, 2017· Updated Jun 17, 2026
CVE-2017-11089
CVE-2017-11089
Description
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed in nl80211_set_station when user space application sends attribute NL80211_ATTR_LOCAL_MESH_POWER_MODE with data of size less than 4 bytes
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
25- osv-coords21 versionspkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-default&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-source&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-syms&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-xen&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_27&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_27&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_27&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/kgraft-patch-SLE12_Update_34&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS
< 3.12.74-60.64.88.1+ 20 more
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.61-52.128.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.61-52.128.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.61-52.128.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.61-52.128.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 3.12.74-60.64.88.1
- (no CPE)range: < 1-2.3.1
- (no CPE)range: < 1-2.3.1
- (no CPE)range: < 1-2.3.1
- (no CPE)range: < 1-1.3.1
- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
Vulnerability mechanics
References
3- source.android.com/security/bulletin/pixel/2017-11-01nvdPatchVendor Advisory
- usn.ubuntu.com/3620-1/nvd
- usn.ubuntu.com/3620-2/nvd
News mentions
0No linked articles in our index yet.