Description: heap OOB read in mwifiex wifi driver
References:
 https://www.openwall.com/lists/oss-security/2019/11/22/2
 https://patchwork.kernel.org/patch/11257535/
Notes:
 bwh> Introduced in 3.15 by commit 5f2caaf32bc6 "mwifiex: parse TDLS action
 bwh> frames during RX".
Bugs:
upstream: released (5.5-rc3) [1e58252e334dc3f3756f424a157d1b7484464c40]
4.19-upstream-stable: released (4.19.95) [21f08020dd8519baf209348c345131a8967e3cef]
4.9-upstream-stable: released (4.9.217) [cb87b895f1468df7a163a6c665bf106a4d26f8c1]
3.16-upstream-stable: released (3.16.83) [ef0449fb4c94e52c1f5f7170b52a738acf9af5ff]
sid: released (5.4.13-1)
4.19-buster-security: released (4.19.98-1)
4.9-stretch-security: released (4.9.210-1) [bugfix/all/mwifiex-fix-heap-overflow-in-mmwifiex_process_tdls_a.patch]
3.16-jessie-security: released (3.16.81-1) [bugfix/all/mwifiex-fix-heap-overflow-in-mmwifiex_process_tdls_a.patch]