U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

CVE-2024-35789 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes When moving a station out of a VLAN and deleting the VLAN afterwards, the fast_rx entry still holds a pointer to the VLAN's netdev, which can cause use-after-free bugs. Fix this by immediately calling ieee80211_check_fast_rx after the VLAN change.


Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NIST CVSS score
NIST: NVD
N/A
NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink Resource
https://git.kernel.org/stable/c/2884a50f52313a7a911de3afcad065ddbb3d78fc
https://git.kernel.org/stable/c/2884a50f52313a7a911de3afcad065ddbb3d78fc
https://git.kernel.org/stable/c/4f2bdb3c5e3189297e156b3ff84b140423d64685
https://git.kernel.org/stable/c/4f2bdb3c5e3189297e156b3ff84b140423d64685
https://git.kernel.org/stable/c/6b948b54c8bd620725e0c906e44b10c0b13087a7
https://git.kernel.org/stable/c/6b948b54c8bd620725e0c906e44b10c0b13087a7
https://git.kernel.org/stable/c/7eeabcea79b67cc29563e6a9a5c81f9e2c664d5b
https://git.kernel.org/stable/c/7eeabcea79b67cc29563e6a9a5c81f9e2c664d5b
https://git.kernel.org/stable/c/be1dd9254fc115321d6fbee042026d42afc8d931
https://git.kernel.org/stable/c/be1dd9254fc115321d6fbee042026d42afc8d931
https://git.kernel.org/stable/c/c8bddbd91bc8e42c961a5e2cec20ab879f21100f
https://git.kernel.org/stable/c/c8bddbd91bc8e42c961a5e2cec20ab879f21100f
https://git.kernel.org/stable/c/e8678551c0243f799b4859448781cbec1bd6f1cb
https://git.kernel.org/stable/c/e8678551c0243f799b4859448781cbec1bd6f1cb
https://git.kernel.org/stable/c/e8b067c4058c0121ac8ca71559df8e2e08ff1a7e
https://git.kernel.org/stable/c/e8b067c4058c0121ac8ca71559df8e2e08ff1a7e
https://git.kernel.org/stable/c/ea9a0cfc07a7d3601cc680718d9cff0d6927a921
https://git.kernel.org/stable/c/ea9a0cfc07a7d3601cc680718d9cff0d6927a921
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Weakness Enumeration

CWE-ID CWE Name Source

Change History

6 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2024-35789
NVD Published Date:
05/17/2024
NVD Last Modified:
11/21/2024
Source:
kernel.org