wifi: cfg80211: avoid nontransmitted BSS list corruption
If a non-transmitted BSS shares enough information (both SSID and BSSID!) with another non-transmitted BSS of a different AP, then we can find and update it, and then try to add it to the non-transmitted BSS list. We do a search for it on the transmitted BSS, but if it's not there (but belongs to another transmitted BSS), the list gets corrupted. Since this is an erroneous situation, simply fail the list insertion in this case and free the non-transmitted BSS. This fixes CVE-2022-42721. Reported-by:Sönke Huster <shuster@seemoo.tu-darmstadt.de> Tested-by:
Johannes Berg <johannes.berg@intel.com>
Loading
-
mentioned in commit c8270fe5
-
mentioned in commit 1c375d3f
-
mentioned in commit 0301de19
-
mentioned in commit 9d799b71
-
mentioned in commit 587da9fc
-
mentioned in commit 97f29f20
-
mentioned in commit b137836d
-
mentioned in commit 8ce66a66
-
mentioned in commit b0bf99ad
-
mentioned in commit 0eafb5df
-
mentioned in commit eac22550
-
mentioned in commit 18b2e7a1
-
mentioned in commit 78dc6076
-
mentioned in commit a9087d39
-
mentioned in commit a343788c
-
mentioned in commit 88b3da76
-
mentioned in commit c3ad18aa
-
mentioned in commit 150b98b6
-
mentioned in commit 788eb4cb
-
mentioned in commit 23d92b22
-
mentioned in commit 9a9f64dc
-
mentioned in commit d04e008c
-
mentioned in commit 9a5df3bd
-
mentioned in commit ccacd75d
-
mentioned in commit 7e0bbfe2
-
mentioned in commit 4961e146
-
mentioned in commit 7d2bd82f
-
mentioned in commit 71ced009
-
mentioned in commit 35903582
-
mentioned in commit 8b594e7f
-
mentioned in commit 68645f7d
-
mentioned in commit 7c401660
-
mentioned in commit 922c4761
-
mentioned in commit a868a695
Please sign in to comment