Bug 2348256 (CVE-2022-49646) - CVE-2022-49646 kernel: wifi: mac80211: fix queue selection for mesh/OCB interfaces
Summary: CVE-2022-49646 kernel: wifi: mac80211: fix queue selection for mesh/OCB inter...
Keywords:
Status: NEW
Alias: CVE-2022-49646
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-02-26 03:23 UTC by OSIDB Bzimport
Modified: 2025-02-26 18:06 UTC (History)
4 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2025-02-26 03:23:07 UTC 
In the Linux kernel, the following vulnerability has been resolved:

wifi: mac80211: fix queue selection for mesh/OCB interfaces

When using iTXQ, the code assumes that there is only one vif queue for
broadcast packets, using the BE queue. Allowing non-BE queue marking
violates that assumption and txq->ac == skb_queue_mapping is no longer
guaranteed. This can cause issues with queue handling in the driver and
also causes issues with the recent ATF change, resulting in an AQL
underflow warning.
Comment 1 Avinash Hanwate 2025-02-26 13:47:20 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025022619-CVE-2022-49646-248b@gregkh/T
Comment 4 Avinash Hanwate 2025-02-26 17:59:27 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025022619-CVE-2022-49646-248b@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.