SB2024082180 - NULL pointer dereference in Linux kernel mac80211

Description

This security bulletin contains information about 1 security vulnerability.

1) NULL pointer dereference (CVE-ID: CVE-2022-48876)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ieee80211_invoke_rx_handlers(), ieee80211_release_reorder_timeout(), ieee80211_mark_rx_ba_filtered_frames(), ieee80211_check_fast_rx_iface(), ieee80211_invoke_fast_rx(), ieee80211_prepare_and_rx_handle(), __ieee80211_rx_handle_8023(), ieee80211_rx_for_interface() and __ieee80211_rx_handle_packet() functions in net/mac80211/rx.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/a57c981d9f24d2bd89eaa76dc477e8ca252e22e8
• https://git.kernel.org/stable/c/e66b7920aa5ac5b1a1997a454004ba9246a3c005
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.8
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2