CVE-2024-49857 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: set the cipher for secured NDP ranging The cipher pointer is not set, but is derefereced trying to set its content, which leads to a NULL pointer dereference. Fix it by pointing to the cipher parameter before dereferencing.

PUBLISHED Reserved 2024-10-21 | Published 2024-10-21 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

626be4bf99f6250cd66da5d311a72ad7455c5a64 (git) before b3322a6d6aa9bc17b395c4b38d3b97578887aa8a

affected

626be4bf99f6250cd66da5d311a72ad7455c5a64 (git) before a949075d4bbf1ca83ccdeaa6ef4ac2ce7526c5f4

affected

Default status

affected

6.11

affected

Any version before 6.11

unaffected

6.11.2 (semver)

unaffected

6.12 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/b3322a6d6aa9bc17b395c4b38d3b97578887aa8a

git.kernel.org/...c/a949075d4bbf1ca83ccdeaa6ef4ac2ce7526c5f4

cve.org (CVE-2024-49857)

nvd.nist.gov (CVE-2024-49857)

Download JSON

help @ threatint.eu