CVE-2024-47718

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: always wait for both firmware loading attempts In 'rtw_wait_firmware_completion()', always wait for both (regular and wowlan) firmware loading attempts. Otherwise if 'rtw_usb_intf_init()' has failed in 'rtw_usb_probe()', 'rtw_usb_disconnect()' may issue 'ieee80211_free_hw()' when one of 'rtw_load_firmware_cb()' (usually the wowlan one) is still in progress, causing UAF detected by KASAN.

Reserved 2024-09-30 | Published 2024-10-21 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

c8e5695eae9959fc5774c0f490f2450be8bad3de before a0c1e2da652cf70825739bc12d49ea15805690bf
affected

c8e5695eae9959fc5774c0f490f2450be8bad3de before ceaab3fb64d6a5426a3db8f87f3e5757964f2532
affected

c8e5695eae9959fc5774c0f490f2450be8bad3de before 7887ad11995a4142671cc49146db536f923c8568
affected

c8e5695eae9959fc5774c0f490f2450be8bad3de before 1b8178a2ae272256ea0dc4f940320a81003535e2
affected

c8e5695eae9959fc5774c0f490f2450be8bad3de before 9432185540bafd42b7bfac6e6ef2f0a0fb4be447
affected

c8e5695eae9959fc5774c0f490f2450be8bad3de before e9a78d9417e167410d6fb83c4e908b077ad8ba6d
affected

c8e5695eae9959fc5774c0f490f2450be8bad3de before 0e735a4c6137262bcefe45bb52fde7b1f5fc6c4d
affected

Default status
affected

5.6
affected

Any version before 5.6
unaffected

5.10.227
unaffected

5.15.168
unaffected

6.1.113
unaffected

6.6.54
unaffected

6.10.13
unaffected

6.11.2
unaffected

6.12
unaffected

References

git.kernel.org/...c/a0c1e2da652cf70825739bc12d49ea15805690bf

git.kernel.org/...c/ceaab3fb64d6a5426a3db8f87f3e5757964f2532

git.kernel.org/...c/7887ad11995a4142671cc49146db536f923c8568

git.kernel.org/...c/1b8178a2ae272256ea0dc4f940320a81003535e2

git.kernel.org/...c/9432185540bafd42b7bfac6e6ef2f0a0fb4be447

git.kernel.org/...c/e9a78d9417e167410d6fb83c4e908b077ad8ba6d

git.kernel.org/...c/0e735a4c6137262bcefe45bb52fde7b1f5fc6c4d

cve.org (CVE-2024-47718)

nvd.nist.gov (CVE-2024-47718)

Download JSON