1222293 – (CVE-2024-26666) VUL-0: CVE-2024-26666: kernel: wifi: mac80211: fix RCU use in TDLS fast-xmit

Bug 1222293 (CVE-2024-26666) - VUL-0: CVE-2024-26666: kernel: wifi: mac80211: fix RCU use in TDLS fast-xmit

Summary: VUL-0: CVE-2024-26666: kernel: wifi: mac80211: fix RCU use in TDLS fast-xmit

Status:	RESOLVED FIXED

Alias:	CVE-2024-26666

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P5 - None Severity: Normal
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/399974/
Whiteboard:	CVSSv3.1:SUSE:CVE-2024-26666:5.5:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2024-04-04 07:47 UTC by SMASH SMASH
Modified:	2024-06-25 18:24 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description SMASH SMASH 2024-04-04 07:47:59 UTC

In the Linux kernel, the following vulnerability has been resolved:

wifi: mac80211: fix RCU use in TDLS fast-xmit

This looks up the link under RCU protection, but isn't
guaranteed to actually have protection. Fix that.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-26666
https://www.cve.org/CVERecord?id=CVE-2024-26666
https://git.kernel.org/stable/c/9480adfe4e0f0319b9da04b44e4eebd5ad07e0cd
https://git.kernel.org/stable/c/c255c3b653c6e8b52ac658c305e2fece2825f7ad
https://git.kernel.org/stable/c/fc3432ae8232ff4025e7c55012dd88db0e3d18eb
https://bugzilla.redhat.com/show_bug.cgi?id=2272773

Comment 1 Gianluca Gabrielli 2024-04-04 07:48:34 UTC

None of our supported branch is affected