CVE-2024-43879

wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he()

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he()

Currently NL80211_RATE_INFO_HE_RU_ALLOC_2x996 is not handled in
cfg80211_calculate_bitrate_he(), leading to below warning:

kernel: invalid HE MCS: bw:6, ru:6
kernel: WARNING: CPU: 0 PID: 2312 at net/wireless/util.c:1501 cfg80211_calculate_bitrate_he+0x22b/0x270 [cfg80211]

Fix it by handling 2x996 RU allocation in the same way as 160 MHz bandwidth.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-08-17 CVE Reserved
2024-08-21 CVE Published
2024-08-21 EPSS Updated
2024-09-15 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/c4cbaf7973a794839af080f13748335976cf3f3f	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/45d20a1c54be4f3173862c7b950d4468447814c9	2024-08-19
https://git.kernel.org/stable/c/b289ebb0516526cb4abae081b7ec29fd4fa1209d	2024-08-19
https://git.kernel.org/stable/c/2e201b3d162c6c49417c438ffb30b58c9f85769f	2024-08-19
https://git.kernel.org/stable/c/576c64622649f3ec07e97bac8fec8b8a2ef4d086	2024-08-19
https://git.kernel.org/stable/c/16ad67e73309db0c20cc2a651992bd01c05e6b27	2024-08-03
https://git.kernel.org/stable/c/67b5f1054197e4f5553047759c15c1d67d4c8142	2024-08-03
https://git.kernel.org/stable/c/19eaf4f2f5a981f55a265242ada2bf92b0c742dd	2024-08-03
https://git.kernel.org/stable/c/bcbd771cd5d68c0c52567556097d75f9fc4e7cd6	2024-06-12

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 4.19.320 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 4.19.320"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 5.4.282 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 5.4.282"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 5.10.224 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 5.10.224"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 5.15.165 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 5.15.165"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 6.1.103 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 6.1.103"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 6.6.44 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 6.6.44"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 6.10.3 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 6.10.3"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19 < 6.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19 < 6.11"		en		Affected