PT-2025-9944 · Linux+7 · Linux Kernel+7
Published
2024-12-06
·
Updated
2026-04-20
·
CVE-2024-58063
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A memory leak and invalid access issue in the Linux kernel's wifi component, specifically in the rtlwifi module, has been identified. The problem occurs during the probe error path, where memory is not properly deinitialized, leading to leaks. The issue arises when the
init sw vars function fails, and rtl deinit core is called, which destroys the rtl wq workqueue. To fix this, rtl pci deinit and deinit sw vars should be called to prevent memory leaks. Additionally, the pci set drvdata call has been removed to avoid potential memory leaks, as it is already handled by the core driver code.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu