PT-2024-10456 · Linux+10 · Linux Kernel+10
Published
2024-07-30
·
Updated
2025-10-13
·
CVE-2024-42114
CVSS v3.1
4.4
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.9.0-rc7-syzkaller-gfda5695d692c
Description
The vulnerability is related to the wifi component in the Linux kernel, specifically with the cfg80211 module. It allows an attacker to trigger softlockups by setting the NL80211 ATTR TXQ QUANTUM value to 2^31. This issue is similar to a previously fixed problem in the sch fq module. The vulnerability can cause a denial-of-service (DoS) condition, where the system becomes unresponsive.
Recommendations
To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. If an update is not available, consider temporarily disabling the wifi functionality or restricting access to the vulnerable module to minimize the risk of exploitation.
Exploit
Fix
DoS
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu