CVE-2024-58097
Published: Apr 16, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix RCU stall while reaping monitor destination ring While processing the monitor destination ring, MSDUs are reaped from the link descriptor based on the corresponding buf_id. However, sometimes the driver cannot obtain a valid buffer corresponding to the buf_id received from the hardware. This causes an infinite loop in the destination processing, resulting in a kernel crash. kernel log: ath11k_pci 0000:58:00.0: data msdu_pop: invalid buf_id 309 ath11k_pci 0000:58:00.0: data dp_rx_monitor_link_desc_return failed ath11k_pci 0000:58:00.0: data msdu_pop: invalid buf_id 309 ath11k_pci 0000:58:00.0: data dp_rx_monitor_link_desc_return failed Fix this by skipping the problematic buf_id and reaping the next entry, replacing the break with the next MSDU processing. Tested-on: WCN6855 hw2.0 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.30 Tested-on: QCN9074 hw1.0 PCI WLAN.HK.2.7.0.1-01744-QCAHKSWPL_SILICONZ-1
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d5c65159f2895379e11ca13f62feabe93278985d - < 8db5de0cf02fccf4c759aa58edbe65659daf607caffected d5c65159f2895379e11ca13f62feabe93278985d - < 9f1a002f0171d27f3554e529f3c70df438f05dfeaffected d5c65159f2895379e11ca13f62feabe93278985d - < b4991fc41745645f8050506f5a8578bd11e6b378affected d5c65159f2895379e11ca13f62feabe93278985d - < 16c6c35c03ea73054a1f6d3302a4ce4a331b427d |
Linux | Linux | affected 5.6unaffected 0 - < 5.6unaffected 6.6.122 - <= 6.6.*unaffected 6.12.68 - <= 6.12.*unaffected 6.14.2 - <= 6.14.*+1 more versions |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now