CVE-2024-50008

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()

Replace one-element array with a flexible-array member in struct host_cmd_ds_802_11_scan_ext.

With this, fix the following warning:

elo 16 17:51:58 surfacebook kernel: ————[ cut here ]———— elo 16 17:51:58 surfacebook kernel: memcpy: detected field-spanning write (size 243) of single field "ext_scan->tlv_buffer" at drivers/net/wireless/marvell/mwifiex/scan.c:2239 (size 1) elo 16 17:51:58 surfacebook kernel: WARNING: CPU: 0 PID: 498 at drivers/net/wireless/marvell/mwifiex/scan.c:2239 mwifiex_cmd_802_11_scan_ext+0x83/0x90 [mwifiex]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < b55c8848fdc81514ec047b2a0ec782ffe9ab5323affected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < f9310a6704bf52e2493480edea896e1f9b795d40affected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < 1756918f51e9ab247a0f4782cc28853c2bb457c1affected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < e59bdb1ba594104cd0ee0af3ee9e4435d842a8feaffected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < 17199b69a84798efffc475040fbef44374ef1de1affected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < fef7b51f22cf2049b0ca6740adeb0ba6f2e671dcaffected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < 71267bd4e8c752d7af6c6b96bb83984a6a95273daffected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < a3a12c30f9510f3753286fadbc6cdb7dad78c1d5affected
LinuxLinux21f58d200388480547df909b5464b5aafebf299d < 498365e52bebcbc36a93279fe7e9d6aec8479ceeaffected
LinuxLinux3.15affected
LinuxLinux0 < 3.15unaffected
LinuxLinux4.19.323 <= 4.19.*unaffected
LinuxLinux5.4.285 <= 5.4.*unaffected
LinuxLinux5.10.227 <= 5.10.*unaffected
LinuxLinux5.15.168 <= 5.15.*unaffected
LinuxLinux6.1.113 <= 6.1.*unaffected
LinuxLinux6.6.55 <= 6.6.*unaffected
LinuxLinux6.10.14 <= 6.10.*unaffected
LinuxLinux6.11.3 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References