CVE-2024-35912

MEDIUM

Linux Kernel 5.12-6.8.4 - Use-After-Free in WiFi iwlwifi mvm rfi Response Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: rfi: fix potential response leaks If the rx payload length check fails, or if kmemdup() fails, we still need to free the command response. Fix that.

References (5)

Core 5

Core References

Patch

https://git.kernel.org/stable/c/28db0ae86cb91a4ab0e855cff779daead936b7d5

Patch

https://git.kernel.org/stable/c/99a75d75007421d8e08ba139e24f77395cd08f62

Patch

https://git.kernel.org/stable/c/c0a40f2f8eba07416f695ffe2011bf3f8b0b6dc8

Patch

https://git.kernel.org/stable/c/f7f0e784894dfcb265f0f9fa499103b0ca7eabde

Patch

https://git.kernel.org/stable/c/06a093807eb7b5c5b29b6cff49f8174a4e702341

Scores

CVSS v3 5.5

EPSS 0.0021

EPSS Percentile 11.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-401

Status published

Products (18)

linux/Kernel 5.12.0 - 5.15.154linux

linux/Kernel 5.16.0 - 6.1.85linux

linux/Kernel 6.2.0 - 6.6.26linux

linux/Kernel 6.7.0 - 6.8.5linux

Linux/Linux < 5.12

Linux/Linux 21254908cbe995a3982a23da32c30d1b43467043 - 06a093807eb7b5c5b29b6cff49f8174a4e702341

Linux/Linux 21254908cbe995a3982a23da32c30d1b43467043 - 28db0ae86cb91a4ab0e855cff779daead936b7d5

Linux/Linux 21254908cbe995a3982a23da32c30d1b43467043 - 99a75d75007421d8e08ba139e24f77395cd08f62

Linux/Linux 21254908cbe995a3982a23da32c30d1b43467043 - c0a40f2f8eba07416f695ffe2011bf3f8b0b6dc8

Linux/Linux 21254908cbe995a3982a23da32c30d1b43467043 - f7f0e784894dfcb265f0f9fa499103b0ca7eabde

... and 8 more

Published May 19, 2024

Tracked Since Feb 18, 2026