Linux Kernel Wi-Fi SSID Length Validation Vulnerability in cfg80211 Component

A vulnerability in the Linux kernel's Wi-Fi configuration (cfg80211) has been addressed. The issue arose in the 'sme' (Service Management Entity) component, specifically within the '__cfg80211_connect_result()' function. If the SSID length exceeded the maximum allowed (32 bytes), it could lead to memory corruption. The vulnerability has been fixed by implementing proper bounds checking. This issue affects several versions of the Linux kernel.

Impact

The vulnerability could cause memory corruption, potentially leading to undefined behavior or exploitation opportunities.

Reproduction

The vulnerability can be reproduced by attempting to connect to a Wi-Fi network with an SSID longer than 32 bytes. This can be done by manually setting an excessively long SSID on a device running an affected version of the Linux kernel.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the official Linux kernel website.