cvelist/2024/26xxx/CVE-2024-26683.json

{
    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
    "CVE_data_meta": {
        "ID": "CVE-2024-26683",
        "ASSIGNER": "cve@kernel.org",
        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: detect stuck ECSA element in probe resp\n\nWe recently added some validation that we don't try to\nconnect to an AP that is currently in a channel switch\nprocess, since that might want the channel to be quiet\nor we might not be able to connect in time to hear the\nswitching in a beacon. This was in commit c09c4f31998b\n(\"wifi: mac80211: don't connect to an AP while it's in\na CSA process\").\n\nHowever, we promptly got a report that this caused new\nconnection failures, and it turns out that the AP that\nwe now cannot connect to is permanently advertising an\nextended channel switch announcement, even with quiet.\nThe AP in question was an Asus RT-AC53, with firmware\n3.0.0.4.380_10760-g21a5898.\n\nAs a first step, attempt to detect that we're dealing\nwith such a situation, so mac80211 can use this later."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "Linux",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Linux",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "<",
                                            "version_name": "c09c4f31998b",
                                            "version_value": "ce112c941c2b"
                                        },
                                        {
                                            "version_value": "not down converted",
                                            "x_cve_json_5_version_data": {
                                                "versions": [
                                                    {
                                                        "version": "6.7",
                                                        "status": "affected"
                                                    },
                                                    {
                                                        "version": "0",
                                                        "lessThan": "6.7",
                                                        "status": "unaffected",
                                                        "versionType": "semver"
                                                    },
                                                    {
                                                        "version": "6.7.5",
                                                        "lessThanOrEqual": "6.7.*",
                                                        "status": "unaffected",
                                                        "versionType": "semver"
                                                    },
                                                    {
                                                        "version": "6.8",
                                                        "lessThanOrEqual": "*",
                                                        "status": "unaffected",
                                                        "versionType": "original_commit_for_fix"
                                                    }
                                                ],
                                                "defaultStatus": "affected"
                                            }
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "references": {
        "reference_data": [
            {
                "url": "https://git.kernel.org/stable/c/ce112c941c2b172afba3e913a90c380647d53975",
                "refsource": "MISC",
                "name": "https://git.kernel.org/stable/c/ce112c941c2b172afba3e913a90c380647d53975"
            },
            {
                "url": "https://git.kernel.org/stable/c/177fbbcb4ed6b306c1626a277fac3fb1c495a4c7",
                "refsource": "MISC",
                "name": "https://git.kernel.org/stable/c/177fbbcb4ed6b306c1626a277fac3fb1c495a4c7"
            }
        ]
    },
    "generator": {
        "engine": "bippy-9e1c9544281a"
    }
}
"-Synchronized-Data." 2024-02-19 15:01:46 +00:00			`{`
"-Synchronized-Data." 2024-04-02 14:27:03 +00:00			`"data_version": "4.0",`
"-Synchronized-Data." 2024-02-19 15:01:46 +00:00			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2024-26683",`
"-Synchronized-Data." 2024-04-02 14:27:03 +00:00			`"ASSIGNER": "cve@kernel.org",`
			`"STATE": "PUBLIC"`
"-Synchronized-Data." 2024-02-19 15:01:46 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2024-04-02 14:27:03 +00:00			"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: detect stuck ECSA element in probe resp\n\nWe recently added some validation that we don't try to\nconnect to an AP that is currently in a channel switch\nprocess, since that might want the channel to be quiet\nor we might not be able to connect in time to hear the\nswitching in a beacon. This was in commit c09c4f31998b\n(\"wifi: mac80211: don't connect to an AP while it's in\na CSA process\").\n\nHowever, we promptly got a report that this caused new\nconnection failures, and it turns out that the AP that\nwe now cannot connect to is permanently advertising an\nextended channel switch announcement, even with quiet.\nThe AP in question was an Asus RT-AC53, with firmware\n3.0.0.4.380_10760-g21a5898.\n\nAs a first step, attempt to detect that we're dealing\nwith such a situation, so mac80211 can use this later."
"-Synchronized-Data." 2024-02-19 15:01:46 +00:00			`}`
			`]`
"-Synchronized-Data." 2024-04-02 14:27:03 +00:00			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "n/a"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "Linux",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Linux",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_affected": "<",`
			`"version_name": "c09c4f31998b",`
			`"version_value": "ce112c941c2b"`
			`},`
			`{`
			`"version_value": "not down converted",`
			`"x_cve_json_5_version_data": {`
			`"versions": [`
			`{`
			`"version": "6.7",`
			`"status": "affected"`
			`},`
			`{`
			`"version": "0",`
			`"lessThan": "6.7",`
			`"status": "unaffected",`
"-Synchronized-Data." 2024-11-05 10:04:06 +00:00			`"versionType": "semver"`
"-Synchronized-Data." 2024-04-02 14:27:03 +00:00			`},`
			`{`
			`"version": "6.7.5",`
			`"lessThanOrEqual": "6.7.*",`
			`"status": "unaffected",`
"-Synchronized-Data." 2024-11-05 10:04:06 +00:00			`"versionType": "semver"`
"-Synchronized-Data." 2024-04-02 14:27:03 +00:00			`},`
			`{`
			`"version": "6.8",`
			`"lessThanOrEqual": "*",`
			`"status": "unaffected",`
			`"versionType": "original_commit_for_fix"`
			`}`
			`],`
			`"defaultStatus": "affected"`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"url": "https://git.kernel.org/stable/c/ce112c941c2b172afba3e913a90c380647d53975",`
			`"refsource": "MISC",`
			`"name": "https://git.kernel.org/stable/c/ce112c941c2b172afba3e913a90c380647d53975"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/177fbbcb4ed6b306c1626a277fac3fb1c495a4c7",`
			`"refsource": "MISC",`
			`"name": "https://git.kernel.org/stable/c/177fbbcb4ed6b306c1626a277fac3fb1c495a4c7"`
			`}`
			`]`
			`},`
			`"generator": {`
"-Synchronized-Data." 2024-11-05 10:04:06 +00:00			`"engine": "bippy-9e1c9544281a"`
"-Synchronized-Data." 2024-02-19 15:01:46 +00:00			`}`
			`}`