CVE-2024-40941: wifi: iwlwifi: mvm: don't read past the mfuart notifcation

Published Jul 12, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

wifi: iwlwifi: mvm: don't read past the mfuart notifcation

In case the firmware sends a notification that claims it has more data than it has, we will read past that was allocated for the notification. Remove the print of the buffer, we won't see it by default. If needed, we can see the content with tracing.

This was reported by KFENCE.

Other sources

Linux Kernel is vulnerable to a denial of service, caused by a flaw in iwlwifi/mvm/fw.c . A local authenticated attacker could exploit this vulnerability to cause a denial of service.

IBM

Affected Software

23 affected componentsFixes available
redhat/kernel<4.19.317
4.19.317
redhat/kernel<5.4.279
5.4.279
redhat/kernel<5.10.221
5.10.221
redhat/kernel<5.15.162
5.15.162
redhat/kernel<6.1.95
6.1.95
redhat/kernel<6.6.35
6.6.35
redhat/kernel<6.9.6
6.9.6
redhat/kernel<6.10
6.10
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.25-16.12.27-1
debian/linux-6.1
6.1.129-1~deb11u1
Linux Linux kernel>=4.12<4.19.317
Linux Linux kernel>=4.20<5.4.279
Linux Linux kernel>=5.5<5.10.221
Linux Linux kernel>=5.11<5.15.162
Linux Linux kernel>=5.16<6.1.95
Linux Linux kernel>=6.2<6.6.35
Linux Linux kernel>=6.7<6.9.6
Linux Linux kernel=6.10-rc1
Linux Linux kernel=6.10-rc2

Remediation

Patch Available

https://git.kernel.org/stable/c/15b37c6fab9d5e40ac399fa1c725118588ed649c

Patch Available

https://git.kernel.org/stable/c/46c59a25337049a2a230ce7f7c3b9f21d0aaaad7

Patch Available

https://git.kernel.org/stable/c/4bb95f4535489ed830cf9b34b0a891e384d1aee4

Patch Available

https://git.kernel.org/stable/c/6532f18e66b384b8d4b7e5c9caca042faaa9e8de

Patch Available

https://git.kernel.org/stable/c/65686118845d427df27ee83a6ddd4885596b0805

Patch Available

https://git.kernel.org/stable/c/a05018739a5e6b9dc112c95bd4c59904062c8940

Patch Available

https://git.kernel.org/stable/c/a8bc8276af9aeacabb773f0c267cfcdb847c6f2d

Patch Available

https://git.kernel.org/stable/c/acdfa33c3cf5e1cd185cc1e0486bd0ea9f09c154

Event History

Jul 12, 2024
CVE Published
via MITRE·12:25 PM
Data Sourced
via MITRE·12:25 PM
Description
Data Sourced
via NVD·01:15 PM
Description
Data Sourced
via NVD·01:15 PM
RemedySeverityAffected Software
Apr 27, 2025
Data Sourced
via Ubuntu·05:24 PM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-40941?

CVE-2024-40941 has a high severity rating due to its potential for memory corruption leading to system instability.

2

How do I fix CVE-2024-40941?

To fix CVE-2024-40941, update to the latest kernel versions provided by your distribution, such as 4.19.317, 5.4.279, or 6.10.

3

What systems are affected by CVE-2024-40941?

CVE-2024-40941 affects various distributions of the Linux kernel, specifically those prior to the specified remedied versions.

4

Can CVE-2024-40941 be exploited remotely?

CVE-2024-40941 could potentially be exploited remotely if an attacker can send crafted notifications to a vulnerable system.

5

Is there a workaround for CVE-2024-40941?

There is no known workaround for CVE-2024-40941; applying the patch or upgrading the kernel is necessary to mitigate the risk.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203