CVE-2024-50235

wifi: cfg80211: clear wdev->cqm_config pointer on free

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: clear wdev->cqm_config pointer on free

When we free wdev->cqm_config when unregistering, we also
need to clear out the pointer since the same wdev/netdev
may get re-registered in another network namespace, then
destroyed later, running this code again, which results in
a double-free.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-10-21 CVE Reserved
2024-11-09 CVE Published
2024-11-14 EPSS Updated
2024-11-19 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/c797498e860e9a435a651bbf0789433684ce6dd8	Vuln. Introduced
https://git.kernel.org/stable/c/37c20b2effe987b806c8de6d12978e4ffeff026f	Vuln. Introduced
https://git.kernel.org/stable/c/32fb9b7d98c3e586bddfb978d383aa8d2b1211bc	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/ba392e1355ba74b1d4fa11b85f71ab6ed7ecc058	2024-11-08
https://git.kernel.org/stable/c/6c44abb2d4c3262737d5d67832daebc8cf48b8c9	2024-11-08
https://git.kernel.org/stable/c/64e4c45d23cd7f6167f69cc2d2877bc7f54292e5	2024-11-08
https://git.kernel.org/stable/c/d5fee261dfd9e17b08b1df8471ac5d5736070917	2024-10-25

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.57 < 6.1.116 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.57 < 6.1.116"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.6.60 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.6.60"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.11.7 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.11.7"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.12 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.12"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				6.5.7 Search vendor "Linux" for product "Linux Kernel" and version "6.5.7"		en		Affected