CVE-2024-40929

July 12, 2024, 4:34 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids In some versions of cfg80211, the ssids poinet might be a valid one even though n_ssids is 0. Accessing the pointer in this case will cuase an out-of-bound access. Fix this by checking n_ssids first.

Product(s) Impacted

Product Versions
Linux Kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/29a18d56bd64b95bd10bda4afda512558471382a
https://git.kernel.org/stable/c/3c4771091ea8016c8601399078916f722dd8833b
https://git.kernel.org/stable/c/60d62757df30b74bf397a2847a6db7385c6ee281
https://git.kernel.org/stable/c/62e007bdeb91c6879a4652c3426aef1cd9d2937b
https://git.kernel.org/stable/c/9e719ae3abad60e245ce248ba3f08148f375a614
https://git.kernel.org/stable/c/f777792952d03bbaf8329fdfa99393a5a33e2640

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-07-12
CVE-2024-40929

Timeline

Published: July 12, 2024, 1:15 p.m.
Last Modified: July 12, 2024, 4:34 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.