wifi: cfg80211: cancel rfkill_block work in wiphy_unregister()

...

PT-2026-1324

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor Exynos 1380 Samsung Mobile Processor Exynos 1480 Samsung Mobile Processor Exynos 2400 Samsung Mobile Processor Exynos 1580 Description An improper handling of the NL80211 vendor command results in a buffer overflow whe...

CVE-2022-50880 wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state()

In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: add peer map clean up for peer delete in ath10kstastate When peer delete failed in a disconnect operation, use-after-free detected by KFENCE in below log. It is because for each vdevid and address, it has only one...

CVE-2023-53180

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid NULL pointer access during management transmit cleanup Currently 'ar' reference is not added in skbcb. Though this is generally not used during transmit completion callbacks, on interface removal the remaining...

ath11k: Fix frames flush failure caused by deadlock

...

Vulnerability of the mt7615_coredump_work() function in the drivers/net/wireless/mediatek/mt76/mt7615/mac.c module – This driver is responsible for supporting wireless communication adapters in the Linux operating system. An attacker can exploit this vulnerability to gain access to protected information.

Vulnerability of the mt7615coredumpwork function in the drivers/net/wireless/mediatek/mt76/mt7615/mac.c module – The driver for supporting kernel-level wireless adapters in the Linux operating system is vulnerable due to improper memory release before deleting the last reference memory leak...

The vulnerability of the ath12k_dp_free() function in the driver drivers/net/wireless/ath/ath12k/dp.c, which is part of the Atheros/Qualcomm wireless adapter support in the Linux operating system, allows a hacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ath12kdpfree function in the drivers/net/wireless/ath/ath12k/dp.c file, which is part of the Atheros/Qualcomm wireless adapter support in the Linux operating system, involves re-liberating memory that has already been freed. Exploiting this vulnerability could allow an...

kernel: wifi: cfg80211: cancel wiphy_work before freeing wiphy

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel wiphywork before freeing wiphy A wiphywork can be queued from the moment the wiphy is allocated and initialized i.e. wiphynewnm. When a wiphywork is queued, the rdev::wiphywork is getting queued. If wiphyfr...

Vulnerability of the mt7921pci_suspend() function in the drivers/net/wireless/mediatek/mt76/mt7921/pci.c module – This driver provides support for wireless communication adapters in the Linux operating system. It can be exploited by attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the mt7921pcisuspend function in the drivers/net/wireless/mediatek/mt76/mt7921/pci.c module – The driver for supporting wireless connection adapters in the Linux operating system contains errors in its code. Exploiting this vulnerability could allow an attacker to compromise the...

Vulnerability of the rtw89_ops CancelHWScan() function in the drivers/net/wireless/realtek/rtw89/mac80211.c module – This driver supports Realtek wireless adapter devices in Linux operating systems. It can be exploited by attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the rtw89ops CancelHWScan function in the drivers/net/wireless/realtek/rtw89/mac80211.c file – The drivers for Realtek wireless adapter support in Linux operating systems are vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability could allow ...

The vulnerability of the cfg80211 component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of DRM/LIMA components in the Linux operating system is related to the state of the competition. Exploiting this vulnerability can allow a hacker to increase their privileges within the system...

AZL-50930 CVE-2024-47738 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't use rate mask for offchannel TX either Like the commit ab9177d83c04 "wifi: mac80211: don't use rate mask for scanning", ignore incorrect settings to avoid no supported rate warning reported by syzbot. The...

The vulnerability of the mac802154_llsec_key_del() function in the net/mac802154/llsec.c module of the Linux kernel’s wireless subsystem allows a attacker to compromise the confidentiality and integrity of protected information, or cause service failures.

The vulnerability of the mac802154llseckeydel function in the net/mac802154/llsec.c module of the Linux kernel’s wireless subsystem is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and integrity of...

linux-wless.passys.nl Cross Site Scripting vulnerability OBB-3827665

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

LinSSID - Graphical wireless scanning for Linux (similar to Inssider)

LinSSID is graphically and functionally similar to Inssider Microsoft™ Windows®. It is written in C++ using Linux wireless tools, Qt5, and Qwt 6.1. LinSSID may be installed either by downloading source or binary from this site, or if you're using Debian/Ubuntu or one of its brethren, adding a ppa...