CVE-2024-35789

Published May 17, 2024

Last updated 4 months ago

CVSS high 7.8

Overview

Description: In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes When moving a station out of a VLAN and deleting the VLAN afterwards, the fast_rx entry still holds a pointer to the VLAN's netdev, which can cause use-after-free bugs. Fix this by immediately calling ieee80211_check_fast_rx after the VLAN change.
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD status: Analyzed
Products: linux_kernel, debian_linux

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-416

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "563581F9-6B9B-4F5E-B3EA-D8BB8B19551E",
            "versionEndExcluding": "4.15",
            "versionStartIncluding": "4.14.232",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "F7A8056E-6D7E-4E0F-A2B2-F8EBF10FF9FF",
            "versionEndExcluding": "4.19.312",
            "versionStartIncluding": "4.19.189",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "64646F81-7DCA-483B-9378-C94B7D86E7C8",
            "versionEndExcluding": "5.4.274",
            "versionStartIncluding": "5.4.114",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "C2086275-1CDE-450C-A609-98FA1C90F10E",
            "versionEndExcluding": "5.10.215",
            "versionStartIncluding": "5.10.32",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "10040772-1DE1-4DA5-91D0-3DDC17BCD2CD",
            "versionEndExcluding": "5.12",
            "versionStartIncluding": "5.11.16",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "79EF2A88-2B19-4725-889C-B6CE14595A85",
            "versionEndExcluding": "5.15.154",
            "versionStartIncluding": "5.12.1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "834D9BD5-42A6-4D74-979E-4D6D93F630FD",
            "versionEndExcluding": "6.1.84",
            "versionStartIncluding": "5.16",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "8018C1D0-0A5F-48D0-BC72-A2B33FDDA693",
            "versionEndExcluding": "6.6.24",
            "versionStartIncluding": "6.2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "6BE9771A-BAFD-4624-95F9-58D536540C53",
            "versionEndExcluding": "6.7.12",
            "versionStartIncluding": "6.7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "4C59BBC3-6495-4A77-9C82-55EC7CDF5E02",
            "versionEndExcluding": "6.8.3",
            "versionStartIncluding": "6.8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.12:-:*:*:*:*:*:*",
            "matchCriteriaId": "75EB504D-4A83-4C67-9C8D-FD9C6C8EB4CD",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.12:rc7:*:*:*:*:*:*",
            "matchCriteriaId": "06AE06A6-A0C3-4556-BFFA-3D6E4BAC43C8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.12:rc8:*:*:*:*:*:*",
            "matchCriteriaId": "FCE63934-38CF-4311-AD72-624E86AF3889",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:*",
            "matchCriteriaId": "22BEDD49-2C6D-402D-9DBF-6646F6ECD10B",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References