PT-2024-32761 · Linux+4 · Linux Kernel+4

Published

2024-08-16

Updated

2025-04-01

CVE-2024-47714

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58

Description A issue has been resolved in the Linux kernel related to the wifi: mt76: mt7996 module. The chainmask is u16, and using hweight8 cannot get the correct tx ant. Without the patch, the tx ant of band 2 would be -1, leading to a stack-out-of-bounds error in the mt7996 mcu add sta function.

Recommendations For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider restricting access to the mt7996 mcu add sta function until a patch is available.

Exploit

Fix

Out of bounds Read

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-787

Related Identifiers

AZL-51261

BDU:2025-03420

CVE-2024-47714

MGASA-2024-0344

MGASA-2024-0345

OESA-2024-2522

OPENSUSE-SU-2024:14500-1

OPENSUSE-SU-2024_3984-1

OPENSUSE-SU-2024_3986-1

OPENSUSE-SU-2025:14705-1

SUSE-SU-2024:3984-1

SUSE-SU-2024:3986-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4387-1

SUSE-SU-2025:20163-1

SUSE-SU-2025:20164-1

SUSE-SU-2025:20246-1

SUSE-SU-2025:20247-1

USN-7276-1

USN-7277-1

USN-7301-1

USN-7303-1

USN-7303-2

USN-7303-3

USN-7304-1

USN-7310-1

USN-7311-1

USN-7384-1

USN-7384-2

USN-7385-1

USN-7386-1

USN-7403-1

Affected Products

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

PT-2024-32761 · Linux+4 · Linux Kernel+4

CVE-2024-47714

Weakness Enumeration

Related Identifiers

Affected Products

References · 2232