CVE-2024-36941

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-36941

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36941.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-36941

Downstream

BELL-CVE-2024-36941

CLSA-2024-1723806933

CLSA-2024-1723807956

CLSA-2024-1723809128

CLSA-2024-1723809480

CLSA-2024-1728936982

DEBIAN-CVE-2024-36941

DLA-3840-1

DLA-3843-1

DSA-5703-1

MGASA-2024-0263

MGASA-2024-0266

OESA-2024-1767

OESA-2024-2151

OESA-2024-2153

OESA-2024-2292

OESA-2024-2296

RHSA-2024:5101

RHSA-2024:5102

RHSA-2024:5363

RHSA-2024:5364

RHSA-2024:5365

RHSA-2024:5692

RHSA-2024:6206

RLSA-2024:5101

RLSA-2024:5102

RLSA-2024:5363

RXSA-2024:5101

SUSE-SU-2024:2008-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2135-1

SUSE-SU-2024:2190-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2493-1

SUSE-SU-2024:2561-1

SUSE-SU-2024:2802-1

SUSE-SU-2024:2894-1

SUSE-SU-2024:2896-1

SUSE-SU-2024:2901-1

SUSE-SU-2024:2947-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

SUSE-SU-2025:20166-1

SUSE-SU-2025:20249-1

Related

Published

2024-05-30T15:29:28.687Z

Modified

2026-05-28T03:54:36.177988056Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

wifi: nl80211: don't free NULL coalescing rule

Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: nl80211: don't free NULL coalescing rule

If the parsing fails, we can dereference a NULL pointer here.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36941.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

be29b99a9b51b0338eea3c66a58de53bbd01de24

Fixed

327382dc0f16b268950b96e0052595efd80f7b0a

Fixed

97792d0611ae2e6fe3ccefb0a94a1d802317c457

Fixed

5a730a161ac2290d46d49be76b2b1aee8d2eb307

Fixed

ad12c74e953b68ad85c78adc6408ed8435c64af4

Fixed

b0db4caa10f2e4e811cf88744fbf0d074b67ec1f

Fixed

244822c09b4f9aedfb5977f03c0deeb39da8ec7d

Fixed

f92772a642485394db5c9a17bd0ee73fc6902383

Fixed

801ea33ae82d6a9d954074fbcf8ea9d18f1543a7

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36941.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.12.0

Fixed

4.19.314

Type: ECOSYSTEM
Events: Introduced

4.20.0

Fixed

5.4.276

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.217

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.159

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.91

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.31

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.8.10

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36941.json"