CVE-2024-53074

MEDIUM

Linux Kernel 6.9-6.11.7 - Resource Leak in iwlwifi AP Removal

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't leak a link on AP removal Release the link mapping resource in AP removal. This impacted devices that do not support the MLD API (9260 and down). On those devices, we couldn't start the AP again after the AP has been already started and stopped.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/70ddf9ce1894c48dbbf10b0de51a95e4fb3dd376

Patch

https://git.kernel.org/stable/c/3ed092997a004d68a3a5b0eeb94e71b69839d0f7

Scores

CVSS v3 5.5

EPSS 0.0019

EPSS Percentile 8.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-772

Status published

Products (9)

linux/Kernel 6.9.0 - 6.11.7linux

Linux/Linux < 6.9

Linux/Linux 6.11.7 - 6.11.*

Linux/Linux 6.12

Linux/Linux 6.9

Linux/Linux a8b5d4809b503da668966a8187b9872e6c85291c - 3ed092997a004d68a3a5b0eeb94e71b69839d0f7

Linux/Linux a8b5d4809b503da668966a8187b9872e6c85291c - 70ddf9ce1894c48dbbf10b0de51a95e4fb3dd376

linux/linux_kernel 6.12 rc1 (6 CPE variants)

linux/linux_kernel 6.9 - 6.11.7

Published Nov 19, 2024

Tracked Since Feb 18, 2026