CVE-2024-26779

In the Linux kernel, the following vulnerability has been resolved:

wifi: mac80211: fix race condition on enabling fast-xmit

fast-xmit must only be enabled after the sta has been uploaded to the driver, otherwise it could end up passing the not-yet-uploaded sta via drv_tx calls to the driver, leading to potential crashes because of uninitialized drv_priv data. Add a missing sta->uploaded check and re-check fast xmit after inserting a sta.

Published: Apr 3, 2024
Updated: Apr 4, 2024
CVE: CVE-2024-26779
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	6.8-rc1	6.8-rc1.x
linux / linux_kernel	5.16	6.1.80
linux / linux_kernel	5.11	5.15.150
linux / linux_kernel	4.20	5.4.270
linux / linux_kernel	6.7	6.7.7
linux / linux_kernel	6.2	6.6.19
linux / linux_kernel	-	4.19.308
linux / linux_kernel	5.5	5.10.211
debian / debian_linux	10.0	10.0.x

https://git.kernel.org/stable/c/281280276b70c822f55ce15b661f6d1d3228aaa9
https://git.kernel.org/stable/c/54b79d8786964e2f840e8a2ec4a9f9a50f3d4954
https://git.kernel.org/stable/c/5ffab99e070b9f8ae0cf60c3c3602b84eee818dd
https://git.kernel.org/stable/c/76fad1174a0cae6fc857b9f88b261a2e4f07d587
https://git.kernel.org/stable/c/85720b69aef177318f4a18efbcc4302228a340e5
https://git.kernel.org/stable/c/88c18fd06608b3adee547102505d715f21075c9d
https://git.kernel.org/stable/c/bcbc84af1183c8cf3d1ca9b78540c2185cd85e7f
https://git.kernel.org/stable/c/eb39bb548bf974acad7bd6780fe11f9e6652d696
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Vulnerability Database

290,273

CVE-2024-26779