Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() 1. The size of the response packet is not validated. 2. The response buffer is not freed. Resolve these issues by switching to iwl_mvm_send_cmd_status(), which handles both size validation and frees the buffer.

INFO

Published Date :

2024-11-19T17:19:41.546Z

Last Modified :

2025-11-03T22:28:53.424Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-53059 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-53059.

URL Resource
https://git.kernel.org/stable/c/07a6e3b78a65f4b2796a8d0d4adb1a15a81edead cve-icon cve-icon
https://git.kernel.org/stable/c/3eb986c64c6bfb721950f9666a3b723cf65d043f cve-icon cve-icon
https://git.kernel.org/stable/c/3f45d590ccbae6dfd6faef54efe74c30bd85d3da cve-icon cve-icon
https://git.kernel.org/stable/c/45a628911d3c68e024eed337054a0452b064f450 cve-icon cve-icon
https://git.kernel.org/stable/c/64d63557ded6ff3ce72b18ab87a6c4b1b652161c cve-icon cve-icon
https://git.kernel.org/stable/c/9480c3045f302f43f9910d2d556d6cf5a62c1822 cve-icon cve-icon
https://git.kernel.org/stable/c/9c98ee7ea463a838235e7a0e35851b38476364f2 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024111928-CVE-2024-53059-4f81@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-53059 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-53059 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact