PT-2024-36973 · Linux+7 · Linux Kernel+7

Cengiz Can

+1

·

Published

2024-12-03

·

Updated

2025-10-03

·

CVE-2024-56663

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74
Description A vulnerability in the Linux kernel has been resolved, related to the wifi component and the nl80211 attribute. The issue was caused by an off-by-one error in the validation of the NL80211 ATTR MLO LINK ID attribute, which could lead to a wild-memory-access bug. The vulnerability was demonstrated with a crash stack showing a read of size 6 at a specific address. To fix the issue, the policy needs to be updated to ensure correct validation of the attribute.
Recommendations Update the Linux kernel to version 6.6.74 or later to fix the vulnerability. As a temporary workaround, consider updating the policy to ensure correct validation of the NL80211 ATTR MLO LINK ID attribute to prevent off-by-one errors.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-193

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-17881
ALT-PU-2025-12647
ALT-PU-2025-3496
AZL-54902
BDU:2025-04554
CVE-2024-56663
DLA-4076-1
INFSA-2025_6966
MGASA-2025-0030
MGASA-2025-0032
OESA-2025-1078
OESA-2025-1079
OPENSUSE-SU-2025_0428-1
OPENSUSE-SU-2025_0499-1
OPENSUSE-SU-2025_0557-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2025:0289-1
SUSE-SU-2025:0428-1
SUSE-SU-2025:0499-1
SUSE-SU-2025:0557-1
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
SUSE-SU-2025_0428-1
SUSE-SU-2025_0499-1
SUSE-SU-2025_0557-1
USN-7379-1
USN-7379-2
USN-7380-1
USN-7381-1
USN-7382-1
USN-7383-1
USN-7383-2
USN-7384-1
USN-7384-2
USN-7385-1
USN-7386-1
USN-7403-1
USN-7451-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu