7.8
CVE-2024-53059
- EPSS 0.28%
- Veröffentlicht 19.11.2024 18:15:25
- Zuletzt bearbeitet 12.05.2026 13:16:21
- CVE-Watchlists
- Unerledigt
wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() 1. The size of the response packet is not validated. 2. The response buffer is not freed. Resolve these issues by switching to iwl_mvm_send_cmd_status(), which handles both size validation and frees the buffer.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.1 < 5.4.285
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.229
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.171
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.116
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.60
Linux ≫ Linux Kernel Version >= 6.7 < 6.11.7
Linux ≫ Linux Kernel Version6.12 Updaterc1
Linux ≫ Linux Kernel Version6.12 Updaterc2
Linux ≫ Linux Kernel Version6.12 Updaterc3
Linux ≫ Linux Kernel Version6.12 Updaterc4
Linux ≫ Linux Kernel Version6.12 Updaterc5
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.28% | 0.197 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
https://git.kernel.org/stable/c/07a6e3b78a65f4b2796a8d0d4adb1a15a81edead
https://git.kernel.org/stable/c/3eb986c64c6bfb721950f9666a3b723cf65d043f
https://git.kernel.org/stable/c/3f45d590ccbae6dfd6faef54efe74c30bd85d3da
https://git.kernel.org/stable/c/45a628911d3c68e024eed337054a0452b064f450
https://git.kernel.org/stable/c/64d63557ded6ff3ce72b18ab87a6c4b1b652161c
https://git.kernel.org/stable/c/9480c3045f302f43f9910d2d556d6cf5a62c1822
https://git.kernel.org/stable/c/9c98ee7ea463a838235e7a0e35851b38476364f2
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
https://cert-portal.siemens.com/productcert/html/ssa-355557.html