Overview
- Description
- In the Linux kernel, the following vulnerability has been resolved: iwlwifi: fix use-after-free If no firmware was present at all (or, presumably, all of the firmware files failed to parse), we end up unbinding by calling device_release_driver(), which calls remove(), which then in iwlwifi calls iwl_drv_stop(), freeing the 'drv' struct. However the new code I added will still erroneously access it after it was freed. Set 'failure=false' in this case to avoid the access, all data was already freed anyway.
- Source
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- nvd@nist.gov
- CWE-416
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D2BAC08D-1DF8-456A-A334-81FA58E954F0",
"versionEndExcluding": "4.14.268",
"versionStartIncluding": "4.14.263"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97E335CA-D0B4-4E7E-95AE-31F09C68F24A",
"versionEndExcluding": "4.19.231",
"versionStartIncluding": "4.19.226"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7C87A014-0685-4F19-AFB4-92D70C2F5E86",
"versionEndExcluding": "5.4.181",
"versionStartIncluding": "5.4.174"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2F8484B5-4C78-484C-B905-1049FCB1A0A4",
"versionEndExcluding": "5.10.102",
"versionStartIncluding": "5.10.94"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AFF9E8A8-A352-42D0-97A3-8EA0F1086775",
"versionEndExcluding": "5.15.25",
"versionStartIncluding": "5.15.17"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85541B15-F4B0-4090-99DA-98AF1312A8B6",
"versionEndExcluding": "5.16.11",
"versionStartIncluding": "5.16.3"
}
],
"operator": "OR"
}
]
}
]