CVE-2024-27410: wifi: nl80211: reject iftype change with mesh ID change

Published May 17, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

wifi: nl80211: reject iftype change with mesh ID change

It's currently possible to change the mesh ID when the interface isn't yet in mesh mode, at the same time as changing it into mesh mode. This leads to an overwrite of data in the wdev->u union for the interface type it currently has, causing cfg80211changeiface() to do wrong things when switching.

We could probably allow setting an interface to mesh while setting the mesh ID at the same time by doing a different order of operations here, but realistically there's no userspace that's going to do this, so just disallow changes in iftype when setting mesh ID.

Other sources

In the Linux kernel, the following vulnerability has been resolved:

wifi: nl80211: reject iftype change with mesh ID change

The Linux kernel CVE team has assigned CVE-2024-27410 to this issue.

Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051701-CVE-2024-27410-874a@gregkh/T

Red Hat

Linux Kernel is vulnerable to a denial of service, caused by a flaw when change the mesh ID and change interface to mesh mode at the same time in the WiFi module. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.

IBM

Affected Software

23 affected componentsFixes available
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.25-16.12.27-1
redhat/kernel<4.19.309
4.19.309
redhat/kernel<5.4.271
5.4.271
redhat/kernel<5.10.212
5.10.212
redhat/kernel<5.15.151
5.15.151
redhat/kernel<6.1.81
6.1.81
redhat/kernel<6.6.21
6.6.21
redhat/kernel<6.7.9
6.7.9
redhat/kernel<6.8
6.8
Linux Linux kernel>=5.19.2<6.1.81
Linux Linux kernel>=6.2<6.6.21
Linux Linux kernel>=6.7<6.7.9
Linux Linux kernel=6.8-rc1
Linux Linux kernel=6.8-rc2
Linux Linux kernel=6.8-rc3
Linux Linux kernel=6.8-rc4
Linux Linux kernel=6.8-rc5
Linux Linux kernel=6.8-rc6
Debian Debian Linux=10.0

Remediation

Patch Available

https://git.kernel.org/stable/c/177d574be4b58f832354ab1ef5a297aa0c9aa2df

Patch Available

https://git.kernel.org/stable/c/930e826962d9f01dcd2220176134427358d112f2

Patch Available

https://git.kernel.org/stable/c/a2add961a5ed25cfd6a74f9ffb9e7ab6d6ded838

Patch Available

https://git.kernel.org/stable/c/f78c1375339a291cba492a70eaf12ec501d28a8e

Patch Available

https://git.kernel.org/stable/c/063715c33b4c37587aeca2c83cf08ead0c542995

Patch Available

https://git.kernel.org/stable/c/0cfbb26ee5e7b3d6483a73883f9f6157bca22ec9

Patch Available

https://git.kernel.org/stable/c/99eb2159680af8786104dac80528acd5acd45980

Patch Available

https://git.kernel.org/stable/c/d38d31bbbb9dc0d4d71a45431eafba03d0bc150d

Event History

May 17, 2024
CVE Published
via MITRE·11:50 AM
Data Sourced
via MITRE·11:50 AM
Description
Data Sourced
via NVD·12:15 PM
Description
Data Sourced
via NVD·12:15 PM
RemedySeverityAffected Software
Data Sourced
via Red Hat·10:08 PM
DescriptionSeverityAffected Software
Jun 8, 2024
Data Sourced
via Launchpad·01:14 AM
Description
May 11, 2025
Data Sourced
via Ubuntu·06:20 AM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-27410?

CVE-2024-27410 has been rated as a medium severity vulnerability due to the potential for unauthorized mesh ID manipulation.

2

How do I fix CVE-2024-27410?

To resolve CVE-2024-27410, upgrade to the latest kernel versions: 4.19.309, 5.4.271, 5.10.212, 5.15.151, 6.1.81, 6.6.21, 6.7.9, or 6.8.

3

Which Linux kernel versions are affected by CVE-2024-27410?

CVE-2024-27410 affects various kernel versions up to and including 6.8.

4

What types of systems are impacted by CVE-2024-27410?

CVE-2024-27410 primarily impacts Linux-based systems that utilize the affected kernel versions.

5

Is there a workaround for CVE-2024-27410?

There are no known workarounds for CVE-2024-27410, so upgrading to a patched version is recommended.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203