CVE-2024-35912: wifi: iwlwifi: mvm: rfi: fix potential response leaks

Published May 19, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

wifi: iwlwifi: mvm: rfi: fix potential response leaks

If the rx payload length check fails, or if kmemdup() fails, we still need to free the command response. Fix that.

Other sources

In the Linux kernel, the following vulnerability has been resolved:

wifi: iwlwifi: mvm: rfi: fix potential response leaks

The Linux kernel CVE team has assigned CVE-2024-35912 to this issue.

Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051956-CVE-2024-35912-b093@gregkh/T

Red Hat

Linux Kernel is vulnerable to a denial of service, caused by a response leaks when the rx payload length check fails, or if kmemdup() fails. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.

IBM

Affected Software

20 affected componentsFixes available
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.22-16.12.25-1
Linux Linux kernel>=5.12<5.15.154
Linux Linux kernel>=5.16<6.1.85
Linux Linux kernel>=6.2<6.6.26
Linux Linux kernel>=6.7<6.8.5
Linux Linux kernel=6.9-rc1
redhat/kernel<5.15.154
5.15.154
redhat/kernel<6.1.85
6.1.85
redhat/kernel<6.6.26
6.6.26
redhat/kernel<6.8.5
6.8.5
redhat/kernel<6.9
6.9
Microsoft cbl2 hyperv-daemons 5.15.153.1-1
Patch available
Microsoft cbl2 hyperv-daemons 5.15.158.1-1
Patch available
Microsoft azl3 hyperv-daemons 6.6.22.1-2
Patch available
Microsoft cbl2 hyperv-daemons 5.15.153.1-1
Patch available
Microsoft azl3 hyperv-daemons 6.6.35.1-1
Patch available

Remediation

Patch Available

https://git.kernel.org/stable/c/06a093807eb7b5c5b29b6cff49f8174a4e702341

Patch Available

https://git.kernel.org/stable/c/28db0ae86cb91a4ab0e855cff779daead936b7d5

Patch Available

https://git.kernel.org/stable/c/99a75d75007421d8e08ba139e24f77395cd08f62

Patch Available

https://git.kernel.org/stable/c/c0a40f2f8eba07416f695ffe2011bf3f8b0b6dc8

Patch Available

https://git.kernel.org/stable/c/f7f0e784894dfcb265f0f9fa499103b0ca7eabde

Event History

May 19, 2024
CVE Published
via MITRE·08:35 AM
Data Sourced
via MITRE·08:35 AM
Description
Data Sourced
via NVD·09:15 AM
Description
Data Sourced
via NVD·09:15 AM
RemedySeverityWeaknessAffected Software
May 20, 2024
Data Sourced
via Red Hat·10:23 AM
DescriptionSeverityAffected Software
May 23, 2024
Data Sourced
via Microsoft·07:00 AM
DescriptionSeverityWeakness
Data Sourced
via Microsoft·07:00 AM
Affected Software
Updated
via Microsoft·07:00 AM
Description
Updated
via Microsoft·07:00 AM
DescriptionSeverity
Jul 11, 2024
Data Sourced
via Launchpad·07:47 PM
Description
Apr 27, 2025
Data Sourced
via Ubuntu·12:21 AM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-35912?

CVE-2024-35912 has been rated with a moderate severity level due to potential response leaks in the Linux kernel.

2

How do I fix CVE-2024-35912?

To fix CVE-2024-35912, update the kernel to versions 5.15.154, 6.1.85, 6.6.26, 6.8.5, 6.9, or specific Debian versions listed.

3

Which Linux kernel versions are affected by CVE-2024-35912?

CVE-2024-35912 affects Linux kernel versions prior to 5.15.154, 6.1.85, 6.6.26, 6.8.5, and 6.9.

4

What type of vulnerability is CVE-2024-35912?

CVE-2024-35912 is a response leak vulnerability related to the iwlwifi driver in the Linux kernel.

5

Can CVE-2024-35912 be exploited remotely?

Yes, CVE-2024-35912 could potentially be exploited in a manner that allows remote attackers to affect the system behavior.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203