CVE-2022-50880

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the ath10k driver related to peer map management during peer deletion. Specifically, when a peer delete operation fails, a use-after-free condition can occur, detected by KFENCE. This happens because multiple HTT T2H MSG TYPE PEER MAP entries from firmware can map to the same ath10k peer structure. When the first peer ID's entry is freed during a failed delete, subsequent access to the same structure via other peer IDs results in a use-after-free scenario. The issue is addressed by cleaning up all peers in the array peer map for the ath10k peer. Logs indicate the issue was observed during deauthentication events.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.