CVE-2024-47721

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw89: remove unused C2H event ID RTW89_MAC_C2H_FUNC_READ_WOW_CAM to prevent out-of-bounds reading

The handler of firmware C2H event RTW89_MAC_C2H_FUNC_READ_WOW_CAM isn't implemented, but driver expects number of handlers is NUM_OF_RTW89_MAC_C2H_FUNC_WOW causing out-of-bounds access. Fix it by removing ID.

Addresses-Coverity-ID: 1598775 ("Out-of-bounds read")

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxff53fce5c78ba27ec7eb0baff7ef9648fde7ad8e < 10463308b9454f534d03300cf679bc4b3d078f46affected
LinuxLinuxff53fce5c78ba27ec7eb0baff7ef9648fde7ad8e < 2c9c2d1a20916589497a7facbea3e82cabec4ab8affected
LinuxLinuxff53fce5c78ba27ec7eb0baff7ef9648fde7ad8e < 56310ddb50b190b3390fdc974aec455d0a516bd2affected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.10.13 <= 6.10.*unaffected
LinuxLinux6.11.2 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References