CVE-2024-50235
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
wifi: cfg80211: clear wdev->cqm_config pointer on free
When we free wdev->cqm_config when unregistering, we also need to clear out the pointer since the same wdev/netdev may get re-registered in another network namespace, then destroyed later, running this code again, which results in a double-free.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | c797498e860e9a435a651bbf0789433684ce6dd8 < ba392e1355ba74b1d4fa11b85f71ab6ed7ecc058 | affected |
| Linux | Linux | 37c20b2effe987b806c8de6d12978e4ffeff026f < 6c44abb2d4c3262737d5d67832daebc8cf48b8c9 | affected |
| Linux | Linux | 37c20b2effe987b806c8de6d12978e4ffeff026f < 64e4c45d23cd7f6167f69cc2d2877bc7f54292e5 | affected |
| Linux | Linux | 37c20b2effe987b806c8de6d12978e4ffeff026f < d5fee261dfd9e17b08b1df8471ac5d5736070917 | affected |
| Linux | Linux | 32fb9b7d98c3e586bddfb978d383aa8d2b1211bc | affected |
| Linux | Linux | 6.1.57 < 6.1.116 | affected |
| Linux | Linux | 6.5.7 < 6.6 | affected |
| Linux | Linux | 6.6 | affected |
| Linux | Linux | 0 < 6.6 | unaffected |
| Linux | Linux | 6.1.116 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.60 <= 6.6.* | unaffected |
| Linux | Linux | 6.11.7 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
- https://git.kernel.org/stable/c/ba392e1355ba74b1d4fa11b85f71ab6ed7ecc058
- https://git.kernel.org/stable/c/6c44abb2d4c3262737d5d67832daebc8cf48b8c9
- https://git.kernel.org/stable/c/64e4c45d23cd7f6167f69cc2d2877bc7f54292e5
- https://git.kernel.org/stable/c/d5fee261dfd9e17b08b1df8471ac5d5736070917
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.