CVE-2024-50237

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower Avoid potentially crashing in the driver because of uninitialized private data
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc5:*:*:*:*:*:*

History

14 Nov 2024, 16:42

Type Values Removed Values Added
CWE CWE-401 CWE-908

14 Nov 2024, 16:24

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5
First Time Linux linux Kernel
Linux
CWE CWE-401
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.12:rc5:*:*:*:*:*:*
References () https://git.kernel.org/stable/c/393b6bc174b0dd21bb2a36c13b36e62fc3474a23 - () https://git.kernel.org/stable/c/393b6bc174b0dd21bb2a36c13b36e62fc3474a23 - Patch
References () https://git.kernel.org/stable/c/3ccf525a73d48e814634847f6d4a6150c6f0dffc - () https://git.kernel.org/stable/c/3ccf525a73d48e814634847f6d4a6150c6f0dffc - Patch
References () https://git.kernel.org/stable/c/78b698fbf37208ee921ee4cedea75b5d33d6ea9f - () https://git.kernel.org/stable/c/78b698fbf37208ee921ee4cedea75b5d33d6ea9f - Patch
References () https://git.kernel.org/stable/c/8f6cd4d5bb7406656835a90e4f1a2192607f0c21 - () https://git.kernel.org/stable/c/8f6cd4d5bb7406656835a90e4f1a2192607f0c21 - Patch
References () https://git.kernel.org/stable/c/b0b862aa3dbcd16b3c4715259a825f48ca540088 - () https://git.kernel.org/stable/c/b0b862aa3dbcd16b3c4715259a825f48ca540088 - Patch
References () https://git.kernel.org/stable/c/b2bcbe5450b20641f512d6b26c6b256a5a4f847f - () https://git.kernel.org/stable/c/b2bcbe5450b20641f512d6b26c6b256a5a4f847f - Patch
References () https://git.kernel.org/stable/c/c21efba8b5a86537ccdf43f77536bad02f82776c - () https://git.kernel.org/stable/c/c21efba8b5a86537ccdf43f77536bad02f82776c - Patch
References () https://git.kernel.org/stable/c/ee35c423042c9e04079fdee3db545135d609d6ea - () https://git.kernel.org/stable/c/ee35c423042c9e04079fdee3db545135d609d6ea - Patch

12 Nov 2024, 13:56

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: wifi: mac80211: no pasar un vif detenido al controlador en .get_txpower Evitar posibles fallos en el controlador debido a datos privados no inicializados

09 Nov 2024, 11:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-09 11:15

Updated : 2024-11-14 16:42


NVD link : CVE-2024-50237

Mitre link : CVE-2024-50237

CVE.ORG link : CVE-2024-50237


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-908

Use of Uninitialized Resource