CVE-2024-35838

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mac80211: fix potential sta-link leak

When a station is allocated, links are added but not set to valid yet (e.g. during connection to an AP MLD), we might remove the station without ever marking links valid, and leak them. Fix that.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxcb71f1d136a635decf43c3b502ee34fb05640fcd < 49aaeb8c539b1633b3bd7c2df131ec578aa1eae1affected
LinuxLinuxcb71f1d136a635decf43c3b502ee34fb05640fcd < 587c5892976108674bbe61a8ff659de279318034affected
LinuxLinuxcb71f1d136a635decf43c3b502ee34fb05640fcd < e04bf59bdba0fa45d52160be676114e16be855a9affected
LinuxLinuxcb71f1d136a635decf43c3b502ee34fb05640fcd < b01a74b3ca6fd51b62c67733ba7c3280fa6c5d26affected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.1.76 <= 6.1.*unaffected
LinuxLinux6.6.15 <= 6.6.*unaffected
LinuxLinux6.7.3 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References