Description
In the Linux kernel, the following vulnerability has been resolved:
wifi: wilc1000: fix RCU usage in connect path
With lockdep enabled, calls to the connect function from cfg802.11 layer
lead to the following warning:
=============================
WARNING: suspicious RCU usage
6.7.0-rc1-wt+ #333 Not tainted
-----------------------------
drivers/net/wireless/microchip/wilc1000/hif.c:386
suspicious rcu_dereference_check() usage!
[...]
stack backtrace:
CPU: 0 PID: 100 Comm: wpa_supplicant Not tainted 6.7.0-rc1-wt+ #333
Hardware name: Atmel SAMA5
unwind_backtrace from show_stack+0x18/0x1c
show_stack from dump_stack_lvl+0x34/0x48
dump_stack_lvl from wilc_parse_join_bss_param+0x7dc/0x7f4
wilc_parse_join_bss_param from connect+0x2c4/0x648
connect from cfg80211_connect+0x30c/0xb74
cfg80211_connect from nl80211_connect+0x860/0xa94
nl80211_connect from genl_rcv_msg+0x3fc/0x59c
genl_rcv_msg from netlink_rcv_skb+0xd0/0x1f8
netlink_rcv_skb from genl_rcv+0x2c/0x3c
genl_rcv from netlink_unicast+0x3b0/0x550
netlink_unicast from netlink_sendmsg+0x368/0x688
netlink_sendmsg from ____sys_sendmsg+0x190/0x430
____sys_sendmsg from ___sys_sendmsg+0x110/0x158
___sys_sendmsg from sys_sendmsg+0xe8/0x150
sys_sendmsg from ret_fast_syscall+0x0/0x1c
This warning is emitted because in the connect path, when trying to parse
target BSS parameters, we dereference a RCU pointer whithout being in RCU
critical section.
Fix RCU dereference usage by moving it to a RCU read critical section. To
avoid wrapping the whole wilc_parse_join_bss_param under the critical
section, just use the critical section to copy ies data
wifi: wilc1000: fix RCU usage in connect path
With lockdep enabled, calls to the connect function from cfg802.11 layer
lead to the following warning:
=============================
WARNING: suspicious RCU usage
6.7.0-rc1-wt+ #333 Not tainted
-----------------------------
drivers/net/wireless/microchip/wilc1000/hif.c:386
suspicious rcu_dereference_check() usage!
[...]
stack backtrace:
CPU: 0 PID: 100 Comm: wpa_supplicant Not tainted 6.7.0-rc1-wt+ #333
Hardware name: Atmel SAMA5
unwind_backtrace from show_stack+0x18/0x1c
show_stack from dump_stack_lvl+0x34/0x48
dump_stack_lvl from wilc_parse_join_bss_param+0x7dc/0x7f4
wilc_parse_join_bss_param from connect+0x2c4/0x648
connect from cfg80211_connect+0x30c/0xb74
cfg80211_connect from nl80211_connect+0x860/0xa94
nl80211_connect from genl_rcv_msg+0x3fc/0x59c
genl_rcv_msg from netlink_rcv_skb+0xd0/0x1f8
netlink_rcv_skb from genl_rcv+0x2c/0x3c
genl_rcv from netlink_unicast+0x3b0/0x550
netlink_unicast from netlink_sendmsg+0x368/0x688
netlink_sendmsg from ____sys_sendmsg+0x190/0x430
____sys_sendmsg from ___sys_sendmsg+0x110/0x158
___sys_sendmsg from sys_sendmsg+0xe8/0x150
sys_sendmsg from ret_fast_syscall+0x0/0x1c
This warning is emitted because in the connect path, when trying to parse
target BSS parameters, we dereference a RCU pointer whithout being in RCU
critical section.
Fix RCU dereference usage by moving it to a RCU read critical section. To
avoid wrapping the whole wilc_parse_join_bss_param under the critical
section, just use the critical section to copy ies data
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Linux | Linux | unaffected |
|
|||||||||||||||||||||||||||||||||
| Linux | Linux | affected |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 Debian DLA |
DLA-3842-1 | linux-5.10 security update |
 Debian DSA |
DSA-5681-1 | linux security update |
 Ubuntu USN |
USN-6816-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6817-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6817-2 | Linux kernel (OEM) vulnerabilities |
| Ubuntu USN |
USN-6817-3 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6820-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6820-2 | Linux kernel (NVIDIA) vulnerabilities |
| Ubuntu USN |
USN-6821-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6821-2 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6821-3 | Linux kernel (AWS) vulnerabilities |
| Ubuntu USN |
USN-6821-4 | Linux kernel (Azure) vulnerabilities |
| Ubuntu USN |
USN-6828-1 | Linux kernel (Intel IoTG) vulnerabilities |
| Ubuntu USN |
USN-6871-1 | Linux kernel (HWE) vulnerabilities |
| Ubuntu USN |
USN-6878-1 | Linux kernel (Oracle) vulnerabilities |
| Ubuntu USN |
USN-6892-1 | Linux kernel (IBM) vulnerabilities |
| Ubuntu USN |
USN-6896-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6896-2 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6896-3 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6896-4 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6896-5 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-6919-1 | Linux kernel vulnerabilities |
References
History
Tue, 08 Apr 2025 20:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Debian
Debian debian Linux |
|
| CPEs | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
|
| Vendors & Products |
Debian
Debian debian Linux |
Fri, 22 Nov 2024 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 05 Nov 2024 10:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published:
Updated: 2025-05-04T09:03:12.080Z
Reserved: 2024-02-19T14:20:24.214Z
Link: CVE-2024-27053
Vulnrichment
Updated: 2024-08-02T00:21:05.869Z
NVD
Status : Analyzed
Published: 2024-05-01T13:15:50.223
Modified: 2025-04-08T19:43:15.420
Link: CVE-2024-27053
Redhat
OpenCVE Enrichment
No data.
Weaknesses