We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-50235

wifi: cfg80211: clear wdev->cqm_config pointer on free



Description

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: clear wdev->cqm_config pointer on free When we free wdev->cqm_config when unregistering, we also need to clear out the pointer since the same wdev/netdev may get re-registered in another network namespace, then destroyed later, running this code again, which results in a double-free.

Reserved 2024-10-21 | Published 2024-11-09 | Updated 2024-11-19 | Assigner Linux

Product status

Default status
unaffected

c797498e860e before ba392e1355ba
affected

37c20b2effe9 before 6c44abb2d4c3
affected

37c20b2effe9 before 64e4c45d23cd
affected

37c20b2effe9 before d5fee261dfd9
affected

Default status
affected

6.6
affected

Any version before 6.6
unaffected

6.1.116
unaffected

6.6.60
unaffected

6.11.7
unaffected

6.12
unaffected

References

git.kernel.org/stable/c/ba392e1355ba74b1d4fa11b85f71ab6ed7ecc058

git.kernel.org/stable/c/6c44abb2d4c3262737d5d67832daebc8cf48b8c9

git.kernel.org/stable/c/64e4c45d23cd7f6167f69cc2d2877bc7f54292e5

git.kernel.org/stable/c/d5fee261dfd9e17b08b1df8471ac5d5736070917

cve.org (CVE-2024-50235)

nvd.nist.gov (CVE-2024-50235)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-50235

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.