Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: handle pmk_op allocation failure The kzalloc() in brcmf_pmksa_v3_op() will return null if the physical memory has run out. As a result, if we dereference the null value, the null pointer dereference bug will happen. Return -ENOMEM from brcmf_pmksa_v3_op() if kzalloc() fails for pmk_op.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.4, < 6.6.23 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/6138a82f3bccfc67ed7ac059493579fc326c02e5Patch
- https://git.kernel.org/stable/c/9975908315c13bae2f2ed5ba92870fa935180b0ePatch
- https://git.kernel.org/stable/c/b4152222e04cb8afeeca239c90e3fcaf4c553b42Patch
- https://git.kernel.org/stable/c/df62e22c2e27420e8990a4f09e30d7bf56c2036fPatch
- https://git.kernel.org/stable/c/6138a82f3bccfc67ed7ac059493579fc326c02e5Patch
- https://git.kernel.org/stable/c/9975908315c13bae2f2ed5ba92870fa935180b0ePatch
- https://git.kernel.org/stable/c/b4152222e04cb8afeeca239c90e3fcaf4c553b42Patch
- https://git.kernel.org/stable/c/df62e22c2e27420e8990a4f09e30d7bf56c2036fPatch
FAQ
What is CVE-2024-27048?
CVE-2024-27048 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: handle pmk_op allocation failure The kzalloc() in brcmf_pmksa_v3_op() will return null if the physical memory has...
How severe is CVE-2024-27048?
CVE-2024-27048 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-27048?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.