CVE-2024-49929

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-49929
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-49929.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-49929
Downstream
Related
Published
2024-10-21T18:01:52.450Z
Modified
2025-11-28T02:34:05.322776Z
Summary
wifi: iwlwifi: mvm: avoid NULL pointer dereference
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: iwlwifi: mvm: avoid NULL pointer dereference

iwlmvmtxskbsta() and iwlmvmtxmpdu() verify that the mvmvsta pointer is not NULL. It retrieves this pointer using iwlmvmstafrommac80211, which is dereferencing the ieee80211sta pointer. If sta is NULL, iwlmvmstafrommac80211 will dereference a NULL pointer. Fix this by checking the sta pointer before retrieving the mvmsta from it. If sta is not NULL, then mvmsta isn't either.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/49xxx/CVE-2024-49929.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5b577a90fb3d86447ee86f8e0c6ddbd5da2ef8c9
Fixed
cbc6fc9cfcde151ff5eadaefdc6155f99579384f
Fixed
6dcadb2ed3b76623ab96e3e7fbeda1a374d01c28
Fixed
cdbf51bfa4b0411820806777da36d93d49bc49a1
Fixed
c0b4f5d94934c290479180868a32c15ba36a6d9e
Fixed
557a6cd847645e667f3b362560bd7e7c09aac284

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.14.0
Fixed
6.1.120
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.55
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.10.14
Type
ECOSYSTEM
Events
Introduced
6.11.0
Fixed
6.11.3