Out of Bounds Vulnerability in Linux Kernel's mt76 Driver by Vendor
CVE-2024-57990

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 February 2025

Summary

An out of bounds vulnerability was identified in the mt76 driver used within the Linux kernel, specifically concerning the mt7925 load function. This issue arises due to an incorrect comparison operator, which should be 'greater than or equal to' instead of 'greater than'. Such a flaw may lead to potential out of bounds read and write operations, thus compromising the integrity and security of systems utilizing the affected driver. Prompt attention to this vulnerability is crucial to ensure operational safety and to mitigate the associated risks.

Affected Version(s)

Linux 9679ca7326e52282cc923c4d71d81c999cb6cd55

Linux 9679ca7326e52282cc923c4d71d81c999cb6cd55 < 2d1628d32300e4f67ac0b7409cbfa7b912a8fe9d

Linux 9679ca7326e52282cc923c4d71d81c999cb6cd55 < 08fa656c91fd5fdf47ba393795b9c0d1e97539ed

References

https://git.kernel.org/stable/c/d03b8fe1b518fc2ea2d82588e...

https://git.kernel.org/stable/c/2d1628d32300e4f67ac0b7409...

https://git.kernel.org/stable/c/08fa656c91fd5fdf47ba39379...

Timeline

Vulnerability published
Feb 27, 2025
Vulnerability Reserved
Feb 27, 2025