Unrated severityNVD Advisory· Published May 1, 2024· Updated May 4, 2025
wifi: brcm80211: handle pmk_op allocation failure
CVE-2024-27048
Description
In the Linux kernel, the following vulnerability has been resolved:
wifi: brcm80211: handle pmk_op allocation failure
The kzalloc() in brcmf_pmksa_v3_op() will return null if the physical memory has run out. As a result, if we dereference the null value, the null pointer dereference bug will happen.
Return -ENOMEM from brcmf_pmksa_v3_op() if kzalloc() fails for pmk_op.
Affected products
8- osv-coords6 versionspkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Micro%206.0
< 6.4.0-17.1.1.51+ 5 more
- (no CPE)range: < 6.4.0-17.1.1.51
- (no CPE)range: < 6.4.0-18.1
- (no CPE)range: < 6.4.0-18.1
- (no CPE)range: < 6.4.0-9.1
- (no CPE)range: < 6.4.0-18.1
- (no CPE)range: < 6.4.0-9.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.