Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids In some versions of cfg80211, the ssids poinet might be a valid one even though n_ssids is 0. Accessing the pointer in this case will cuase an out-of-bound access. Fix this by checking n_ssids first.

INFO

Published Date :

2024-07-12T12:25:08.434Z

Last Modified :

2025-11-03T21:57:56.614Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-40929 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-40929.

URL Resource
https://git.kernel.org/stable/c/29a18d56bd64b95bd10bda4afda512558471382a cve-icon cve-icon
https://git.kernel.org/stable/c/3c4771091ea8016c8601399078916f722dd8833b cve-icon cve-icon
https://git.kernel.org/stable/c/60d62757df30b74bf397a2847a6db7385c6ee281 cve-icon cve-icon
https://git.kernel.org/stable/c/62e007bdeb91c6879a4652c3426aef1cd9d2937b cve-icon cve-icon
https://git.kernel.org/stable/c/9e719ae3abad60e245ce248ba3f08148f375a614 cve-icon cve-icon
https://git.kernel.org/stable/c/f777792952d03bbaf8329fdfa99393a5a33e2640 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024071215-CVE-2024-40929-e1cb@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-40929 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-40929 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact