CVE-2024-47718

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-47718
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47718.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-47718
Downstream
Related
Published
2024-10-21T11:53:48.859Z
Modified
2026-03-11T07:47:06.449915Z
Summary
wifi: rtw88: always wait for both firmware loading attempts
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw88: always wait for both firmware loading attempts

In 'rtwwaitfirmwarecompletion()', always wait for both (regular and wowlan) firmware loading attempts. Otherwise if 'rtwusbintfinit()' has failed in 'rtwusbprobe()', 'rtwusbdisconnect()' may issue 'ieee80211freehw()' when one of 'rtwloadfirmware_cb()' (usually the wowlan one) is still in progress, causing UAF detected by KASAN.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/47xxx/CVE-2024-47718.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c8e5695eae9959fc5774c0f490f2450be8bad3de
Fixed
a0c1e2da652cf70825739bc12d49ea15805690bf
Fixed
ceaab3fb64d6a5426a3db8f87f3e5757964f2532
Fixed
7887ad11995a4142671cc49146db536f923c8568
Fixed
1b8178a2ae272256ea0dc4f940320a81003535e2
Fixed
9432185540bafd42b7bfac6e6ef2f0a0fb4be447
Fixed
e9a78d9417e167410d6fb83c4e908b077ad8ba6d
Fixed
0e735a4c6137262bcefe45bb52fde7b1f5fc6c4d

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47718.json"