CVE-2024-47718

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58

Description The issue concerns the Linux kernel, specifically the wifi: rtw88 module. In the rtw wait firmware completion() function, the code now always waits for both regular and wowlan firmware loading attempts. This change prevents a potential use-after-free (UAF) error detected by KASAN, which could occur if rtw usb intf init() fails in rtw usb probe() and rtw usb disconnect() issues ieee80211 free hw() while one of rtw load firmware cb() is still in progress.

Recommendations For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider disabling the rtw wait firmware completion() function until a patch is available. Restrict access to the wifi: rtw88 module to minimize the risk of exploitation. Avoid using the rtw load firmware cb() function in the affected kernel version until the issue is resolved.