CVE-2024-40929: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids

Published Jul 12, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

wifi: iwlwifi: mvm: check nssids before accessing the ssids

In some versions of cfg80211, the ssids poinet might be a valid one even though nssids is 0. Accessing the pointer in this case will cuase an out-of-bound access. Fix this by checking nssids first.

Other sources

Linux Kernel is vulnerable to a denial of service, caused by an out-of-bound access in iwlwifi/mvm/scan.c. A local authenticated attacker could exploit this vulnerability to cause a denial of service.

IBM

This CVE was automatically created from a reference found in an email or other text. If you are reading this, then this CVE entry is probably erroneous, since this text should be replaced by the official CVE description automatically.

Launchpad

Affected Software

19 affected componentsFixes available
redhat/kernel<5.10.221
5.10.221
redhat/kernel<5.15.162
5.15.162
redhat/kernel<6.1.95
6.1.95
redhat/kernel<6.6.35
6.6.35
redhat/kernel<6.9.6
6.9.6
redhat/kernel<6.10
6.10
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.25-1
debian/linux-6.1
6.1.129-1~deb11u1
Linux Linux kernel>=4.17<5.10.221
Linux Linux kernel>=5.11<5.15.162
Linux Linux kernel>=5.16<6.1.95
Linux Linux kernel>=6.2<6.6.35
Linux Linux kernel>=6.7<6.9.6
Linux Linux kernel=6.10-rc1
Linux Linux kernel=6.10-rc2

Remediation

Patch Available

https://git.kernel.org/stable/c/29a18d56bd64b95bd10bda4afda512558471382a

Patch Available

https://git.kernel.org/stable/c/3c4771091ea8016c8601399078916f722dd8833b

Patch Available

https://git.kernel.org/stable/c/60d62757df30b74bf397a2847a6db7385c6ee281

Patch Available

https://git.kernel.org/stable/c/62e007bdeb91c6879a4652c3426aef1cd9d2937b

Patch Available

https://git.kernel.org/stable/c/9e719ae3abad60e245ce248ba3f08148f375a614

Patch Available

https://git.kernel.org/stable/c/f777792952d03bbaf8329fdfa99393a5a33e2640

Event History

Jul 12, 2024
CVE Published
via MITRE·12:25 PM
Data Sourced
via MITRE·12:25 PM
Description
Data Sourced
via NVD·01:15 PM
Description
Data Sourced
via NVD·01:15 PM
RemedySeverityWeaknessAffected Software
Nov 2, 2024
Data Sourced
via Launchpad·04:39 PM
Description
May 1, 2025
Data Sourced
via Ubuntu·05:24 PM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-40929?

CVE-2024-40929 is classified as a moderate severity vulnerability in the Linux kernel.

2

How do I fix CVE-2024-40929?

To remediate CVE-2024-40929, upgrade the kernel to a version that includes the fix, such as kernel 5.10.221, 5.15.162, or later versions.

3

Which versions of the Linux kernel are affected by CVE-2024-40929?

CVE-2024-40929 affects specific versions of the Linux kernel before 5.10.221, 5.15.162, 6.1.95, and others listed in the advisory.

4

Does CVE-2024-40929 affect Red Hat or Debian distributions?

Yes, CVE-2024-40929 impacts both Red Hat and Debian distributions that include affected kernel versions.

5

What is the nature of the vulnerability in CVE-2024-40929?

CVE-2024-40929 involves an out-of-bounds access when accessing the ssids pointer without checking the n_ssids value in certain versions of cfg80211.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203