CVE-2024-26897: wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete

Published Apr 17, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath9k: delay all of ath9kwmieventtasklet() until init is complete

The ath9kwmieventtasklet() used in ath9khtc assumes that all the data structures have been fully initialised by the time it runs. However, because of the order in which things are initialised, this is not guaranteed to be the case, because the device is exposed to the USB subsystem before the ath9k driver initialisation is completed.

We already committed a partial fix for this in commit: 8b3046abc99e ("ath9khtc: fix NULL pointer dereference at ath9khtctxgetpacket()")

However, that commit only aborted the WMITXSTATUSEVENTID command in the event tasklet, pairing it with an "initialisation complete" bit in the TX struct. It seems syzbot managed to trigger the race for one of the other commands as well, so let's just move the existing synchronisation bit to cover the whole tasklet (setting it at the end of ath9khtcprobedevice() instead of inside ath9ktxinit()).

Other sources

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath9k: delay all of ath9kwmieventtasklet() until init is complete

The Linux kernel CVE team has assigned CVE-2024-26897 to this issue.

Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024041744-CVE-2024-26897-5382@gregkh/T

Red Hat

Linux Kernel is vulnerable to a denial of service, caused by the failure to delay all of ath9kwmieventtasklet() until init is complete. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.

IBM

Affected Software

19 affected componentsFixes available
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.25-1
redhat/kernel<5.10.214
5.10.214
redhat/kernel<5.15.153
5.15.153
redhat/kernel<6.1.83
6.1.83
redhat/kernel<6.6.23
6.6.23
redhat/kernel<6.7.11
6.7.11
redhat/kernel<6.8.2
6.8.2
redhat/kernel<6.9
6.9
Linux Linux kernel>=5.10.136<5.10.214
Linux Linux kernel>=5.15.17<5.15.153
Linux Linux kernel>=5.16.3<6.1.83
Linux Linux kernel>=6.2<6.6.23
Linux Linux kernel>=6.7<6.7.11
Linux Linux kernel>=6.8<6.8.2
Debian Debian Linux=10.0

Remediation

Patch Available

https://git.kernel.org/stable/c/1bc5461a21c56a36e2a7d81e152b90ce019a3905

Patch Available

https://git.kernel.org/stable/c/24355fcb0d4cbcb6ddda262596558e8cfba70f11

Patch Available

https://git.kernel.org/stable/c/4afa0246656d5680c8a4c3fb37ba6570c4ab819b

Patch Available

https://git.kernel.org/stable/c/74d0639261dd795dce958d1b14815bdcbb48a715

Patch Available

https://git.kernel.org/stable/c/a015fbf698c8957aa5fbeefc5c59dd2cf3107298

Patch Available

https://git.kernel.org/stable/c/ac90e22e735bac44f74b5161fb096fbeb0ff8bc2

Patch Available

https://git.kernel.org/stable/c/f8ff4b4df71e87f609be0cc37d92e918107f9b90

Event History

Apr 17, 2024
CVE Published
via MITRE·10:27 AM
Data Sourced
via MITRE·10:27 AM
Description
Data Sourced
via NVD·11:15 AM
Description
Data Sourced
via NVD·11:15 AM
RemedySeverityWeaknessAffected Software
Data Sourced
via Red Hat·05:48 PM
DescriptionSeverityAffected Software
Jun 8, 2024
Data Sourced
via Launchpad·01:10 AM
Description
Apr 28, 2025
Data Sourced
via Ubuntu·02:21 PM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-26897?

CVE-2024-26897 is classified as a medium severity vulnerability in the Linux kernel.

2

How do I fix CVE-2024-26897?

To fix CVE-2024-26897, update your Linux kernel to version 5.10.214, 5.15.153, 6.1.83, 6.6.23, 6.7.11, 6.8.2, 6.9, or any patched version provided by your distribution.

3

What systems are affected by CVE-2024-26897?

CVE-2024-26897 affects various versions of the Linux kernel, particularly those from Red Hat and Debian distributions.

4

Is CVE-2024-26897 exploited in the wild?

As of now, there is no public indication that CVE-2024-26897 is actively exploited in the wild.

5

What components of the Linux kernel does CVE-2024-26897 affect?

CVE-2024-26897 affects the ath9k driver in the Linux kernel, specifically related to the initialization of data structures.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203