CVE-2024-43879

MEDIUM EPSS 12.2%
Published Aug 21, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Aug 21, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() Currently NL80211_RATE_INFO_HE_RU_ALLOC_2x996 is not handled in cfg80211_calculate_bitrate_he(), leading to below warning: kernel: invalid HE MCS: bw:6, ru:6 kernel: WARNING: CPU: 0 PID: 2312 at net/wireless/util.c:1501 cfg80211_calculate_bitrate_he+0x22b/0x270 [cfg80211] Fix it by handling 2x996 RU allocation in the same way as 160 MHz bandwidth.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
12.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥4.19  –  <4.19.320
linuxlinux_kernel*≥4.20  –  <5.4.282
linuxlinux_kernel*≥5.5  –  <5.10.224
linuxlinux_kernel*≥5.11  –  <5.15.165
linuxlinux_kernel*≥5.16  –  <6.1.103
linuxlinux_kernel*≥6.2  –  <6.6.44
linuxlinux_kernel*≥6.7  –  <6.10.3

References 12

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-265688.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-355557.html
  • git.kernel.org https://git.kernel.org/stable/c/16ad67e73309db0c20cc2a651992bd01c05e6b27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/19eaf4f2f5a981f55a265242ada2bf92b0c742dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2e201b3d162c6c49417c438ffb30b58c9f85769f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/45d20a1c54be4f3173862c7b950d4468447814c9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/576c64622649f3ec07e97bac8fec8b8a2ef4d086
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/67b5f1054197e4f5553047759c15c1d67d4c8142
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b289ebb0516526cb4abae081b7ec29fd4fa1209d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bcbd771cd5d68c0c52567556097d75f9fc4e7cd6
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/16ad67e73309db0c20cc2a651992bd01c05e6b27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/19eaf4f2f5a981f55a265242ada2bf92b0c742dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2e201b3d162c6c49417c438ffb30b58c9f85769f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/45d20a1c54be4f3173862c7b950d4468447814c9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/576c64622649f3ec07e97bac8fec8b8a2ef4d086
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/67b5f1054197e4f5553047759c15c1d67d4c8142
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b289ebb0516526cb4abae081b7ec29fd4fa1209d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bcbd771cd5d68c0c52567556097d75f9fc4e7cd6
    Patch