Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: iwlwifi: mvm – fixed a potential array out-of-bounds access issue. The parameter IWLSECWEPKEYOFFSET will be used as needed during verification, along with determining the keylen value in the iwlmvmseckeyadd function...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: mvm: Fixed a possible NULL dereference. In iwlmvmremovetimeevent, a check was added to ensure that ‘tedata-vif’ is NULL before dereferencing it...

CVE-2026-31779

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix potential out-of-bounds read in iwlmvmndmatchinfohandler The memcpy function assumes the dynamic array notif-matches is at least as large as the number of bytes to copy. Otherwise, results-matches may...

Linux Distros Unpatched Vulnerability : CVE-2023-53589

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: iwlwifi: mvm: don't trust firmware nchannels If the firmware sends us a corrupted MCC response with nchannels much larger than the command response can be...

PT-2025-40752

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the iwlwifi mvm module where it incorrectly trusts the number of channels n channels reported by the firmware. A corrupted response from the...

PT-2025-34417

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue within the iwlwifi module related to error handling in the iwl op mode dvm start function. Specifically, the code was returning an incorrect error co...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the iwlwifi module not checking the allocorderedworkqueue return value...

PT-2025-26090 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc3+ Description: A vulnerability in the Linux kernel has been resolved, related to the wifi component, specifically in the iwlwifi mvm module. The issue occurs when station queues are disabled, and the...

PT-2025-27707 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, specifically in the iwlwifi module. The issue occurs when there is an error during initialization, causing the system to retry...

DEBIAN-CVE-2025-21906

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: clean up ROC on failure If the firmware fails to start the session protection, then we do call iwlmvmrocfinished here, but that won't do anything at all because IWLMVMSTATUSROCP2PRUNNING was never set. Set...

The vulnerability of the iwl_mvm_umac_scan_cfg_channels_v6_6g() function in the drivers/net/wireless/intel/iwlwifi/mvm/scan.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the function iwlmvmumacscancfgchannelsv66g in the module drivers/net/wireless/intel/iwlwifi/mvm/scan.c of the Linux kernel is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow an attacker to cause a service failur...

PT-2025-27683

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the iwlwifi module, where the iwl trans reclaim function was warning when called while the firmware FW is...

CVE-2022-49417

CVE-2022-49417 involves the Linux kernel component iwlwifi/mei. The issue is a potential NULL-ptr dereference that could occur when SKB allocation fails; the fix was to skip using the NULL pointer instead of dereferencing it. This vulnerability is described as resolved in multiple sources and is ...

kernel: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: check nssids before accessing the ssids In some versions of cfg80211, the ssids poinet might be a valid one even though nssids is 0. Accessing the pointer in this case will cuase an out-of-bound access. Fix th...

kernel: wifi: iwlwifi: mvm: rfi: fix potential response leaks

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: rfi: fix potential response leaks The Linux kernel CVE team has assigned CVE-2024-35912 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051956-CVE-2024-35912-b093@gregkh/T...

CVE-2024-36970 wifi: iwlwifi: Use request_module_nowait

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Use requestmodulenowait This appears to work around a deadlock regression that came in with the LED merge in 6.9. The deadlock happens on my system with 24 iwlwifi radios, so maybe it something like all worker...

CVE-2024-36922

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: read txq-readptr under lock If we read txq-readptr without lock, we can read the same value twice, then obtain the lock, and reclaim from there to two different places, but crucially reclaim the same entry twice,...

CVE-2024-36922

CVE-2024-36922 is grounded in the Linux kernel wifi stack: the iwlwifi driver could read txq->read_ptr without holding the lock, risking reading the same value twice and later reclaiming the same entry twice, triggering a WARN_ONCE. The vulnerability is resolved by reading txq->read_ptr und...

CVE-2021-47415

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: mvm: Fix possible NULL dereference In iwlmvmremovetimeevent check that 'tedata-vif' is NULL before dereferencing it...

AZL-67493 CVE-2024-27056 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: ensure offloading TID queue exists The resume code path assumes that the TX queue for the offloading TID has been configured. At resume time it then tries to sync the write pointer as it may have been updated ...