CVE-2024-53074

MEDIUM

Linux Kernel < 6.11.7 - Resource Leak

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't leak a link on AP removal Release the link mapping resource in AP removal. This impacted devices that do not support the MLD API (9260 and down). On those devices, we couldn't start the AP again after the AP has been already started and stopped.

References (2)

[Patch] https://git.kernel.org/stable/c/3ed092997a004d68a3a5b0eeb94e71b69839d0f7

[Patch] https://git.kernel.org/stable/c/70ddf9ce1894c48dbbf10b0de51a95e4fb3dd376

Scores

CVSS v3 5.5

EPSS 0.0002

EPSS Percentile 3.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-772

Status published

Products (3)

linux/Kernel 6.9.0 - 6.11.7linux

linux/linux_kernel 6.12 rc1 (6 CPE variants)

linux/linux_kernel 6.9 - 6.11.7

Published Nov 19, 2024

Tracked Since Feb 18, 2026