Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2024-44997
HistorySep 04, 2024 - 7:54 p.m.

CVE-2024-44997 net: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()

2024-09-0419:54:42
Linux
www.cve.org
1
linux kernel
ethernet
use-after-free

EPSS

0

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

net: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()

When there are multiple ap interfaces on one band and with WED on,
turning the interface down will cause a kernel panic on MT798X.

Previously, cb_priv was freed in mtk_wed_setup_tc_block() without
marking NULL,and mtk_wed_setup_tc_block_cb() didn’t check the value, too.

Assign NULL after free cb_priv in mtk_wed_setup_tc_block() and check NULL
in mtk_wed_setup_tc_block_cb().

Unable to handle kernel paging request at virtual address 0072460bca32b4f5
Call trace:
mtk_wed_setup_tc_block_cb+0x4/0x38
0xffffffc0794084bc
tcf_block_playback_offloads+0x70/0x1e8
tcf_block_unbind+0x6c/0xc8

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/mediatek/mtk_wed.c"
    ],
    "versions": [
      {
        "version": "799684448e3e",
        "lessThan": "326a89321f9d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "799684448e3e",
        "lessThan": "b453a4bbda03",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "799684448e3e",
        "lessThan": "db1b4bedb9b9",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/mediatek/mtk_wed.c"
    ],
    "versions": [
      {
        "version": "6.2",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.2",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.48",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10.7",
        "lessThanOrEqual": "6.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.11",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

cve 1
vulnrichment 1
debiancve 1
osv 1
ubuntucve 1
redhatcve 1
nvd 1
cve
cve
CVE-2024-44997
2024-09-04 20:15:08
vulnrichment
vulnrichment
CVE-2024-44997 net: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()
2024-09-04 19:54:42
debiancve
debiancve
CVE-2024-44997
2024-09-04 20:15:08
osv
osv
CVE-2024-44997
2024-09-04 20:15:08
ubuntucve
ubuntucve
CVE-2024-44997
2024-09-05 00:00:00
redhatcve
redhatcve
CVE-2024-44997
2024-09-04 21:41:21
nvd
nvd
CVE-2024-44997
2024-09-04 20:15:08

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2024-44997
cve1vulnrichment1debiancve1osv1ubuntucve1redhatcve1nvd1