CVE-2024-26779
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-26779
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26779.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-26779
- Downstream
- Related
- Published
- 2024-04-03T17:01:09.807Z
- Modified
- 2025-11-28T02:34:54.771130Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- wifi: mac80211: fix race condition on enabling fast-xmit
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: fix race condition on enabling fast-xmit
fast-xmit must only be enabled after the sta has been uploaded to the driver, otherwise it could end up passing the not-yet-uploaded sta via drvtx calls to the driver, leading to potential crashes because of uninitialized drvpriv data. Add a missing sta->uploaded check and re-check fast xmit after inserting a sta.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26779.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/281280276b70c822f55ce15b661f6d1d3228aaa9
- https://git.kernel.org/stable/c/54b79d8786964e2f840e8a2ec4a9f9a50f3d4954
- https://git.kernel.org/stable/c/5ffab99e070b9f8ae0cf60c3c3602b84eee818dd
- https://git.kernel.org/stable/c/76fad1174a0cae6fc857b9f88b261a2e4f07d587
- https://git.kernel.org/stable/c/85720b69aef177318f4a18efbcc4302228a340e5
- https://git.kernel.org/stable/c/88c18fd06608b3adee547102505d715f21075c9d
- https://git.kernel.org/stable/c/bcbc84af1183c8cf3d1ca9b78540c2185cd85e7f
- https://git.kernel.org/stable/c/eb39bb548bf974acad7bd6780fe11f9e6652d696
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26779.json
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://nvd.nist.gov/vuln/detail/CVE-2024-26779
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1da177e4c3f41524e886b7f1b8a0c1fc7321cac2Fixed76fad1174a0cae6fc857b9f88b261a2e4f07d587Fixed85720b69aef177318f4a18efbcc4302228a340e5Fixed5ffab99e070b9f8ae0cf60c3c3602b84eee818ddFixed88c18fd06608b3adee547102505d715f21075c9dFixedeb39bb548bf974acad7bd6780fe11f9e6652d696Fixed54b79d8786964e2f840e8a2ec4a9f9a50f3d4954Fixed281280276b70c822f55ce15b661f6d1d3228aaa9Fixedbcbc84af1183c8cf3d1ca9b78540c2185cd85e7f
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.19.308
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.270
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.211
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.150
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.80
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.19
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.7.7