CVE-2024-36921
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: guard against invalid STA ID on removal
Guard against invalid station IDs in iwl_mvm_mld_rm_sta_id as that would result in out-of-bounds array accesses. This prevents issues should the driver get into a bad state during error handling.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 006c152ac9e56ac7871efa995854c3ff8cf6915a < 94f80a8ec15e238b78521f20f8afaed60521a294 | affected |
| Linux | Linux | 006c152ac9e56ac7871efa995854c3ff8cf6915a < fab21d220017daa5fd8a3d788ff25ccfecfaae2f | affected |
| Linux | Linux | 006c152ac9e56ac7871efa995854c3ff8cf6915a < 17f64517bf5c26af56b6c3566273aad6646c3c4f | affected |
| Linux | Linux | 6.4 | affected |
| Linux | Linux | 0 < 6.4 | unaffected |
| Linux | Linux | 6.6.31 <= 6.6.* | unaffected |
| Linux | Linux | 6.8.10 <= 6.8.* | unaffected |
| Linux | Linux | 6.9 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/94f80a8ec15e238b78521f20f8afaed60521a294
- https://git.kernel.org/stable/c/fab21d220017daa5fd8a3d788ff25ccfecfaae2f
- https://git.kernel.org/stable/c/17f64517bf5c26af56b6c3566273aad6646c3c4f
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/94f80a8ec15e238b78521f20f8afaed60521a294
- https://git.kernel.org/stable/c/fab21d220017daa5fd8a3d788ff25ccfecfaae2f
- https://git.kernel.org/stable/c/17f64517bf5c26af56b6c3566273aad6646c3c4f
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.