PT-2024-32102 · Linux+8 · Linux Kernel+8

Published

2024-08-10

·

Updated

2025-09-29

·

CVE-2024-46672

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the wifi component of the Linux kernel, specifically with the brcmfmac driver. The problem occurs when the driver tries to dereference NULL pointers in the cfg80211 pmksa function. This happens because the wpa supplicant 2.11 sends SSID-based PMKSA deletion commands, which the brcmfmac driver is not prepared to handle. The PMKID V3 operations support SSID-based updates, so the SSID needs to be copied. The vulnerability can be exploited to cause a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-13260
ALT-PU-2024-13979
AZL-49257
BDU:2025-01781
CVE-2024-46672
OESA-2025-1097
OPENSUSE-SU-2024_3551-1
OPENSUSE-SU-2024_3561-1
OPENSUSE-SU-2024_3564-1
SUSE-SU-2024:3551-1
SUSE-SU-2024:3553-1
SUSE-SU-2024:3561-1
SUSE-SU-2024:3564-1
SUSE-SU-2025:20073-1
SUSE-SU-2025:20077-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7196-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu
Brcmfmac
Wpa Supplicant