VULNERABILITY

Ubuntu: (Multiple Advisories) (CVE-2024-49937): Linux kernel vulnerabilities

Try Surface Command Get a continuous 360° view of your attack surface
Back to Search

Ubuntu: (Multiple Advisories) (CVE-2024-49937): Linux kernel vulnerabilities

Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
10/21/2024
Created
03/10/2025
Added
02/20/2025
Modified
03/05/2025

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Set correct chandef when starting CAC When starting CAC in a mode other than AP mode, it return a "WARNING: CPU: 0 PID: 63 at cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]" caused by the chandef.chan being null at the end of CAC. Solution: Ensure the channel definition is set for the different modes when starting CAC to avoid getting a NULL 'chan' at the end of CAC. Call Trace: ? show_regs.part.0+0x14/0x16 ? __warn+0x67/0xc0 ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211] ? report_bug+0xa7/0x130 ? exc_overflow+0x30/0x30 ? handle_bug+0x27/0x50 ? exc_invalid_op+0x18/0x60 ? handle_exception+0xf6/0xf6 ? exc_overflow+0x30/0x30 ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211] ? exc_overflow+0x30/0x30 ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211] ? regulatory_propagate_dfs_state.cold+0x1b/0x4c [cfg80211] ? cfg80211_propagate_cac_done_wk+0x1a/0x30 [cfg80211] ? process_one_work+0x165/0x280 ? worker_thread+0x120/0x3f0 ? kthread+0xc2/0xf0 ? process_one_work+0x280/0x280 ? kthread_complete_and_exit+0x20/0x20 ? ret_from_fork+0x19/0x24 [shorten subject, remove OCB, reorder cases to match previous list]

Solution(s)

  • ubuntu-upgrade-linux-image-6-11-0-1005-realtime
  • ubuntu-upgrade-linux-image-6-11-0-1008-raspi
  • ubuntu-upgrade-linux-image-6-11-0-1009-aws
  • ubuntu-upgrade-linux-image-6-11-0-1009-azure
  • ubuntu-upgrade-linux-image-6-11-0-1009-azure-fde
  • ubuntu-upgrade-linux-image-6-11-0-1009-gcp
  • ubuntu-upgrade-linux-image-6-11-0-1010-lowlatency
  • ubuntu-upgrade-linux-image-6-11-0-1010-lowlatency-64k
  • ubuntu-upgrade-linux-image-6-11-0-1011-oracle
  • ubuntu-upgrade-linux-image-6-11-0-1011-oracle-64k
  • ubuntu-upgrade-linux-image-6-11-0-1015-oem
  • ubuntu-upgrade-linux-image-6-11-0-18-generic
  • ubuntu-upgrade-linux-image-6-11-0-18-generic-64k
  • ubuntu-upgrade-linux-image-6-8-0-1006-gkeop
  • ubuntu-upgrade-linux-image-6-8-0-1019-gke
  • ubuntu-upgrade-linux-image-6-8-0-1019-raspi
  • ubuntu-upgrade-linux-image-6-8-0-1020-oracle
  • ubuntu-upgrade-linux-image-6-8-0-1020-oracle-64k
  • ubuntu-upgrade-linux-image-6-8-0-1022-nvidia
  • ubuntu-upgrade-linux-image-6-8-0-1022-nvidia-64k
  • ubuntu-upgrade-linux-image-6-8-0-1022-nvidia-lowlatency
  • ubuntu-upgrade-linux-image-6-8-0-1022-nvidia-lowlatency-64k
  • ubuntu-upgrade-linux-image-6-8-0-1023-aws
  • ubuntu-upgrade-linux-image-6-8-0-1024-gcp
  • ubuntu-upgrade-linux-image-6-8-0-1024-gcp-64k
  • ubuntu-upgrade-linux-image-6-8-0-54-generic
  • ubuntu-upgrade-linux-image-6-8-0-54-generic-64k
  • ubuntu-upgrade-linux-image-6-8-0-54-lowlatency
  • ubuntu-upgrade-linux-image-6-8-0-54-lowlatency-64k
  • ubuntu-upgrade-linux-image-aws
  • ubuntu-upgrade-linux-image-aws-lts-24-04
  • ubuntu-upgrade-linux-image-azure
  • ubuntu-upgrade-linux-image-azure-fde
  • ubuntu-upgrade-linux-image-gcp
  • ubuntu-upgrade-linux-image-gcp-64k
  • ubuntu-upgrade-linux-image-gcp-64k-lts-24-04
  • ubuntu-upgrade-linux-image-gcp-lts-24-04
  • ubuntu-upgrade-linux-image-generic
  • ubuntu-upgrade-linux-image-generic-64k
  • ubuntu-upgrade-linux-image-generic-64k-hwe-24-04
  • ubuntu-upgrade-linux-image-generic-hwe-24-04
  • ubuntu-upgrade-linux-image-generic-lpae
  • ubuntu-upgrade-linux-image-gke
  • ubuntu-upgrade-linux-image-gkeop
  • ubuntu-upgrade-linux-image-gkeop-6-8
  • ubuntu-upgrade-linux-image-kvm
  • ubuntu-upgrade-linux-image-lowlatency
  • ubuntu-upgrade-linux-image-lowlatency-64k
  • ubuntu-upgrade-linux-image-lowlatency-64k-hwe-22-04
  • ubuntu-upgrade-linux-image-lowlatency-hwe-22-04
  • ubuntu-upgrade-linux-image-nvidia
  • ubuntu-upgrade-linux-image-nvidia-6-8
  • ubuntu-upgrade-linux-image-nvidia-64k
  • ubuntu-upgrade-linux-image-nvidia-64k-6-8
  • ubuntu-upgrade-linux-image-nvidia-64k-hwe-22-04
  • ubuntu-upgrade-linux-image-nvidia-hwe-22-04
  • ubuntu-upgrade-linux-image-nvidia-lowlatency
  • ubuntu-upgrade-linux-image-nvidia-lowlatency-64k
  • ubuntu-upgrade-linux-image-oem-24-04
  • ubuntu-upgrade-linux-image-oem-24-04a
  • ubuntu-upgrade-linux-image-oem-24-04b
  • ubuntu-upgrade-linux-image-oracle
  • ubuntu-upgrade-linux-image-oracle-64k
  • ubuntu-upgrade-linux-image-oracle-64k-lts-24-04
  • ubuntu-upgrade-linux-image-oracle-lts-24-04
  • ubuntu-upgrade-linux-image-raspi
  • ubuntu-upgrade-linux-image-realtime
  • ubuntu-upgrade-linux-image-realtime-hwe-24-04
  • ubuntu-upgrade-linux-image-virtual
  • ubuntu-upgrade-linux-image-virtual-hwe-24-04

References

View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;