CVE-2024-58064

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: tests: Fix potential NULL dereference in test_cfg80211_parse_colocated_ap()

kunit_kzalloc() may return NULL, dereferencing it without NULL check may lead to NULL dereference. Add a NULL check for ies.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux45d43937a44c806b8649323b8f5d9f42ae838b0e < 886271409603956edd09df229dde7442c410a872affected
LinuxLinux45d43937a44c806b8649323b8f5d9f42ae838b0e < 0d17d81143f5aa56ee87e60bb1000a2372a0ada8affected
LinuxLinux45d43937a44c806b8649323b8f5d9f42ae838b0e < 13c4f7714c6a1ecf748a2f22099447c14fe6ed8caffected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux6.12.13 <= 6.12.*unaffected
LinuxLinux6.13.2 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References