CVE-2024-27434: wifi: iwlwifi: mvm: don't set the MFP flag for the GTK
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: don't set the MFP flag for the GTK
The firmware doesn't need the MFP flag for the GTK, it can even make the firmware crash. in case the AP is configured with: group cipher TKIP and MFPC. We would send the GTK with cipher = TKIP and MFP which is of course not possible.
Other sources
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: don't set the MFP flag for the GTK
The Linux kernel CVE team has assigned CVE-2024-27434 to this issue.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051756-CVE-2024-27434-ac61@gregkh/T
— Red Hat
Linux Kernel is vulnerable to a denial of service, caused by a flaw relate to setting the MFP flag for the GTK. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.
— IBM
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of CVE-2024-27434?
CVE-2024-27434 is considered a high-severity vulnerability due to the potential for system instability and crashes.
How do I fix CVE-2024-27434?
To fix CVE-2024-27434, update the Linux kernel to version 6.6.23, 6.7.11, 6.8.2, 6.9, or the specified versions for Debian's linux packages.
Who is affected by CVE-2024-27434?
CVE-2024-27434 affects users of specific versions of the Linux kernel from Red Hat and Debian.
What vulnerabilities does CVE-2024-27434 address?
CVE-2024-27434 addresses an issue with the MFP flag in the iwlwifi driver that can cause firmware crashes.
Is CVE-2024-27434 related to any specific configurations?
Yes, CVE-2024-27434 is particularly relevant for systems configured with group cipher TKIP and MFPC.