CVE-2024-50005
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
mac802154: Fix potential RCU dereference issue in mac802154_scan_worker
In the mac802154_scan_worker function, the scan_req->type field was
accessed after the RCU read-side critical section was unlocked. According
to RCU usage rules, this is illegal and can lead to unpredictable
behavior, such as accessing memory that has been updated or causing
use-after-free issues.
This possible bug was identified using a static analysis tool developed by myself, specifically designed to detect RCU-related issues.
To address this, the scan_req->type value is now stored in a local
variable scan_req_type while still within the RCU read-side critical
section. The scan_req_type is then used after the RCU lock is released,
ensuring that the type value is safely accessed without violating RCU
rules.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | e2c3e6f53a7a8a00ffeed127cfd1b397c3b016f8 < e676e4ea76bbe7f1156d8c326b9b6753849481c2 | affected |
| Linux | Linux | e2c3e6f53a7a8a00ffeed127cfd1b397c3b016f8 < 540138377b22f601f06f55ebfa3ca171dcab471a | affected |
| Linux | Linux | e2c3e6f53a7a8a00ffeed127cfd1b397c3b016f8 < d18f669461811dfe2915d5554ab2a9834f810013 | affected |
| Linux | Linux | e2c3e6f53a7a8a00ffeed127cfd1b397c3b016f8 < bff1709b3980bd7f80be6786f64cc9a9ee9e56da | affected |
| Linux | Linux | 6.5 | affected |
| Linux | Linux | 0 < 6.5 | unaffected |
| Linux | Linux | 6.6.55 <= 6.6.* | unaffected |
| Linux | Linux | 6.10.14 <= 6.10.* | unaffected |
| Linux | Linux | 6.11.3 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/e676e4ea76bbe7f1156d8c326b9b6753849481c2
- https://git.kernel.org/stable/c/540138377b22f601f06f55ebfa3ca171dcab471a
- https://git.kernel.org/stable/c/d18f669461811dfe2915d5554ab2a9834f810013
- https://git.kernel.org/stable/c/bff1709b3980bd7f80be6786f64cc9a9ee9e56da
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.