Memory Corruption in Linux Kernel 802.15.4 Interface Management
CVE-2024-57948

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 31 January 2025

Summary

A vulnerability in the Linux kernel's handling of IEEE 802.15.4 network interfaces can lead to memory corruption. The issue arises when an IEEE 802.15.4 network interface is improperly deleted after the associated hardware device has been unregistered. Specifically, during the interface removal process, checks for local interfaces must be performed to prevent manipulation of a corrupted data list. Failure to do so can result in significant system instability and potential exploitation. This flaw has been reported and fixed in the Linux kernel, ensuring enhanced stability and security in future updates.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0d11dc30edfc4acef0acef130bb5ca596317190a

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 98ea165a2ac240345c48b57c0a3d08bbcad02929

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 80aee0bc0dbe253b6692d33e64455dc742fc52f1

References

https://git.kernel.org/stable/c/0d11dc30edfc4acef0acef130...

https://git.kernel.org/stable/c/98ea165a2ac240345c48b57c0...

https://git.kernel.org/stable/c/80aee0bc0dbe253b6692d33e6...

Timeline

Vulnerability published
Jan 31, 2025
Vulnerability Reserved
Jan 19, 2025