/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CVE-2024-57995

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-57995

Severity

7.8

High

CVSS V3

Description

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath12k: fix read pointer after free in ath12k_mac_assign_vif_to_vdev()

In ath12k_mac_assign_vif_to_vdev(), if arvif is created on a different radio, it gets deleted from that radio through a call to ath12k_mac_unassign_link_vif(). This action frees the arvif pointer. Subsequently, there is a check involving arvif, which will result in a read-after-free scenario.

Fix this by moving this check after arvif is again assigned via call to ath12k_mac_assign_link_vif().

Tested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.3.1-00173-QCAHKSWPL_SILICONZ-1

References

  • https://images.chainguard.dev/security/CGA-84jp-588w-58hq
  • https://github.com/advisories/GHSA-7x7f-m8j9-p3cw
  • https://git.kernel.org/stable/c/5a10971c7645a95f5d5dc23c26fbac4bf61801d0
  • https://git.kernel.org/stable/c/f3a95a312419e4f1e992525917da9dbcd247038f

Affected packages

Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing

Solutions

FedRAMPPCI DSSGolden ImagesCVE RemediationPublic Sector

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsChainguard CoursesDocumentationTrust Center

Company

About UsBlogPartnersNewsroomCareersLegal