Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-27434HistoryMay 17, 2024 - 1:15 p.m.
CVE-2024-27434
2024-05-1713:15:58
Debian Security Bug Tracker
security-tracker.debian.org
3
cve-2024-27434
linux kernel
wifi
vulnerability
firmware
gtk
cipher
crash
ap
mfpc
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don’t set the MFP flag for the GTK The firmware doesn’t need the MFP flag for the GTK, it can even make the firmware crash. in case the AP is configured with: group cipher TKIP and MFPC. We would send the GTK with cipher = TKIP and MFP which is of course not possible.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.76-1 | linux_6.1.76-1_all.deb |
| Debian | 11 | all | linux | < 5.10.209-2 | linux_5.10.209-2_all.deb |
| Debian | 10 | all | linux | < 4.19.249-2 | linux_4.19.249-2_all.deb |
| Debian | 999 | all | linux | < 6.7.12-1 | linux_6.7.12-1_all.deb |
| Debian | 13 | all | linux | < 6.7.12-1 | linux_6.7.12-1_all.deb |
Related
redhatcve
redhatcve
CVE-2024-27434
2024-05-17 23:10:30
cve
cve
CVE-2024-27434
2024-05-17 13:15:58
cvelist
cvelist
CVE-2024-27434 wifi: iwlwifi: mvm: don't set the MFP flag for the GTK
2024-05-17 12:08:50
ubuntucve
ubuntucve
CVE-2024-27434
2024-05-17 00:00:00
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.1%
Related for DEBIANCVE:CVE-2024-27434