CVE-2024-38562

2024-06-1914:15:16

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

wifi vulnerability

out of bounds array indexing

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

In the Linux kernel, the following vulnerability has been resolved:

wifi: nl80211: Avoid address calculations via out of bounds array indexing

Before request->channels[] can be used, request->n_channels must be set.
Additionally, address calculations for memory after the “channels” array
need to be calculated from the allocation base (“request”) rather than
via the first “out of bounds” index of “channels”, otherwise run-time
bounds checking will throw a warning.

Affected configurations

Vulners

Node

linuxlinux_kernelRange6.6–6.6.33

linuxlinux_kernelRange6.7.0–6.8.12

linuxlinux_kernelRange6.9.0–6.9.3

linuxlinux_kernelRange6.10.0–6.10-rc1

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/wireless/nl80211.c"
    ],
    "versions": [
      {
        "version": "e3eac9f32ec0",
        "lessThan": "ed74398642fc",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e3eac9f32ec0",
        "lessThan": "4e2a5566462b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e3eac9f32ec0",
        "lessThan": "8fa4d56564ee",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e3eac9f32ec0",
        "lessThan": "838c7b8f1f27",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/wireless/nl80211.c"
    ],
    "versions": [
      {
        "version": "6.6",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.6",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.33",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.8.12",
        "lessThanOrEqual": "6.8.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.9.3",
        "lessThanOrEqual": "6.9.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10-rc1",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]