from ${URL}: CVE-2017-12153(https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12153): nl80211_set_rekey_data() does not check if the required attributes NL80211_REKEY_DATA_{REPLAY_CTR,KEK,KCK} are present when processing NL80211_CMD_SET_REKEY_OFFLOAD request. This request can be issued by users with CAP_NET_ADMIN privilege and may result in NULL dereference and a system crash. Add a check for the required attributes presence. upstream patch:commit e785fa0a164aa11001cba931367c7f94ffaff888
Fix in 4.9.53, 4.14