Bug 2301490 (CVE-2024-42125) - CVE-2024-42125 kernel: wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband
Summary: CVE-2024-42125 kernel: wifi: rtw89: fw: scan offload prohibit all 6 GHz chann...
Keywords:
Status: NEW
Alias: CVE-2024-42125
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2301805
Blocks:
TreeView+ depends on / blocked
 
Reported: 2024-07-30 08:34 UTC by OSIDB Bzimport
Modified: 2024-09-23 13:05 UTC (History)
5 users (show)

Fixed In Version: kernel 6.9.9, kernel 6.10
Doc Type: If docs needed, set a value
Doc Text:
A vulnerability was found in the Linux kernel's rtw89 driver function rtw89_scan_get_6g_disabled_chan() caused by its handling of 6 GHz band channels during scans. A lack of proper sband checks can lead to a situation where the sband is not available due to device limitations/restrictions set by the BIOS and this leads to a NULL pointer dereference. This can lead to system instability or crashes.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description OSIDB Bzimport 2024-07-30 08:34:16 UTC
In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband

We have some policy via BIOS to block uses of 6 GHz. In this case, 6 GHz
sband will be NULL even if it is WiFi 7 chip. So, add NULL handling here
to avoid crash.

Comment 1 Mauro Matteo Cascella 2024-07-30 19:33:36 UTC
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024073026-CVE-2024-42125-b515@gregkh/T

Comment 2 Mauro Matteo Cascella 2024-07-30 19:33:59 UTC
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2301805]


Note You need to log in before you can comment on or make changes to this bug.