CVE-2024-50008

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58

Description: A vulnerability in the Linux kernel has been fixed, involving the mwifiex WiFi driver. The issue was a memcpy() field-spanning write warning in the mwifiex cmd 802 11 scan ext() function. This warning occurred due to a one-element array in the struct host cmd ds 802 11 scan ext structure, which has been replaced with a flexible-array member to resolve the issue. The warning was detected when the memcpy() function attempted to write beyond the bounds of the ext scan->tlv buffer field.

Recommendations: For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider disabling the mwifiex cmd 802 11 scan ext() function until a patch is available. Restrict access to the mwifiex WiFi driver to minimize the risk of exploitation. Avoid using the ext scan->tlv buffer field in the affected mwifiex cmd 802 11 scan ext() function until the issue is resolved.