CVE-2020-24586
First published: Tue May 11 2021(Updated: )
A flaw was found in the Linux kernels implementation of wifi fragmentation handling. An attacker with the ability to transmit within the wireless transmission range of an access point can abuse a flaw where previous contents of wifi fragments can be unintentionally transmitted to another device.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:4.18.0-348.rt7.130.el8 | 0:4.18.0-348.rt7.130.el8 |
| redhat/kernel | <0:4.18.0-348.el8 | 0:4.18.0-348.el8 |
| redhat/kernel | <5.13 | 5.13 |
| IEEE 802.11 | ||
| Debian Linux | =9.0 | |
| Linux mac80211 | ||
| Arista C-250 Firmware | <10.0.1-31 | |
| Arista C-250 Firmware | ||
| Arista C-260 Firmware | <10.0.1-31 | |
| Arista C-260 Firmware | ||
| Arista C-230 Firmware | <10.0.1-31 | |
| Arista C-230 Firmware | ||
| Arista C-235 Firmware | <10.0.1-31 | |
| Arista C-235 Firmware | ||
| Arista C-200 Firmware | <11.0.0-36 | |
| Arista C-200 Firmware | ||
| Intel Wi-Fi 6E AX210 firmware | <22.30.0.11 | |
| Intel Wi-Fi 6 AX210 | ||
| Intel Wi-Fi 6E AX201 Firmware | <22.30.0.11 | |
| Intel AX201 Firmware | ||
| Intel AX200 Firmware | <22.30.0.11 | |
| Intel AX200 Firmware | ||
| Intel AC 9560 Firmware | <22.30.0.11 | |
| Intel Wireless-AC 9560 | ||
| Intel PROSet AC 9462 Firmware | <22.30.0.11 | |
| Intel ProSet AC 9462 | ||
| Intel PROSet AC 9461 Firmware | <22.30.0.11 | |
| Intel ProSet AC 9461 | ||
| Intel ProSet AC 9260 Firmware | <22.30.0.11 | |
| Intel PROSet Wireless for AC 9260 | ||
| Intel ProSet AC 8265 Firmware | <20.70.21.2 | |
| Intel AC 8265 Firmware | ||
| Intel ProSet Wireless Software and Drivers for Ac 8260 | <20.70.21.2 | |
| Intel PROSet AC 8260 | ||
| Intel AC3168 Firmware | <19.51.33.1 | |
| Intel AC 3168 Firmware | ||
| Intel AC 7265 | <19.51.33.1 | |
| Intel AC 7265 Firmware | ||
| Intel PROSet/Wireless Software for Intel Dual Band Wireless-AC 3165 | <19.51.33.1 | |
| Intel AC 3165 Firmware | ||
| Intel Killer Wi-Fi 6E AX1675 Firmware | ||
| Intel AX1675 Firmware | ||
| Intel Killer Wi-Fi 6 AX1650 firmware | ||
| Intel AX1650 Firmware | ||
| Intel AC 1550 Firmware | ||
| Intel Killer Wireless-ac 1550 | ||
| Linux Kernel | >=4.4<4.4.271 | |
| Linux Kernel | >=4.9<4.9.271 | |
| Linux Kernel | >=4.14<4.14.235 | |
| Linux Kernel | >=4.19<4.19.193 | |
| Linux Kernel | >=5.4<5.4.124 | |
| Linux Kernel | >=5.10<5.10.42 | |
| Linux Kernel | >=5.12<5.12.9 | |
| All of | ||
| Arista C-250 Firmware | <10.0.1-31 | |
| Arista C-250 Firmware | ||
| All of | ||
| Arista C-260 Firmware | <10.0.1-31 | |
| Arista C-260 Firmware | ||
| All of | ||
| Arista C-230 Firmware | <10.0.1-31 | |
| Arista C-230 Firmware | ||
| All of | ||
| Arista C-235 Firmware | <10.0.1-31 | |
| Arista C-235 Firmware | ||
| All of | ||
| Arista C-200 Firmware | <11.0.0-36 | |
| Arista C-200 Firmware | ||
| All of | ||
| Intel Wi-Fi 6E AX210 firmware | <22.30.0.11 | |
| Intel Wi-Fi 6 AX210 | ||
| All of | ||
| Intel Wi-Fi 6E AX201 Firmware | <22.30.0.11 | |
| Intel AX201 Firmware | ||
| All of | ||
| Intel AX200 Firmware | <22.30.0.11 | |
| Intel AX200 Firmware | ||
| All of | ||
| Intel AC 9560 Firmware | <22.30.0.11 | |
| Intel Wireless-AC 9560 | ||
| All of | ||
| Intel PROSet AC 9462 Firmware | <22.30.0.11 | |
| Intel ProSet AC 9462 | ||
| All of | ||
| Intel PROSet AC 9461 Firmware | <22.30.0.11 | |
| Intel ProSet AC 9461 | ||
| All of | ||
| Intel ProSet AC 9260 Firmware | <22.30.0.11 | |
| Intel PROSet Wireless for AC 9260 | ||
| All of | ||
| Intel ProSet AC 8265 Firmware | <20.70.21.2 | |
| Intel AC 8265 Firmware | ||
| All of | ||
| Intel ProSet Wireless Software and Drivers for Ac 8260 | <20.70.21.2 | |
| Intel PROSet AC 8260 | ||
| All of | ||
| Intel AC3168 Firmware | <19.51.33.1 | |
| Intel AC 3168 Firmware | ||
| All of | ||
| Intel AC 7265 | <19.51.33.1 | |
| Intel AC 7265 Firmware | ||
| All of | ||
| Intel PROSet/Wireless Software for Intel Dual Band Wireless-AC 3165 | <19.51.33.1 | |
| Intel AC 3165 Firmware | ||
| All of | ||
| Intel Killer Wi-Fi 6E AX1675 Firmware | ||
| Intel AX1675 Firmware | ||
| All of | ||
| Intel Killer Wi-Fi 6 AX1650 firmware | ||
| Intel AX1650 Firmware | ||
| All of | ||
| Intel AC 1550 Firmware | ||
| Intel Killer Wireless-ac 1550 | ||
| debian/firmware-nonfree | <=20210315-3 | 20230210-5 20241210-1 |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.128-1 6.12.20-1 6.12.21-1 |
Remedy
Mitigation for this issue is either not available or the currently available options does not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-24586 https://nvd.nist.gov/vuln/detail/CVE-2020-24586 https://lore.kernel.org/linux-wireless/20210511200110.3f8290e59823.I622a67769ed39257327a362cfc09c812320eb979@changeid/
- https://bugzilla.redhat.com/show_bug.cgi?id=1959642
- https://access.redhat.com/errata/RHSA-2021:4140
- https://access.redhat.com/errata/RHSA-2021:4356
- https://access.redhat.com/security/cve/cve-2020-24586
- https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
- https://www.fragattacks.com
- http://www.openwall.com/lists/oss-security/2021/05/11/12
- https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html
- https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html
- https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63
- https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html
- https://launchpad.net/bugs/cve/CVE-2020-24586
- https://lore.kernel.org/linux-wireless/20210511200110.3f8290e59823.I622a67769ed39257327a362cfc09c812320eb979@changeid/
- https://papers.mathyvanhoef.com/usenix2021.pdf
- https://www.fragattacks.com/
- https://lore.kernel.org/linux-wireless/c4d8c2f040b368225b72a91e74ee282d9ceab4d5.camel@coelho.fi/
- https://lore.kernel.org/linux-wireless/20210511180259.159598-1-johannes@sipsolutions.net/
- https://lore.kernel.org/linux-wireless/20210511200110.037aa5ca0390.I7bb888e2965a0db02a67075fcb5deb50eb7408aa@changeid/
- https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=55d964905a2b6cd790cbbbb46640bb2fb520b0cb
- https://security-tracker.debian.org/tracker/CVE-2020-24586
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24586
- https://nvd.nist.gov/vuln/detail/CVE-2020-24586
- https://ubuntu.com/security/CVE-2020-24586
Frequently Asked Questions
What is the severity of CVE-2020-24586?
CVE-2020-24586 is rated as a medium severity vulnerability.
How do I fix CVE-2020-24586?
To fix CVE-2020-24586, update to the patched versions of the kernel provided by your distribution.
What systems are affected by CVE-2020-24586?
CVE-2020-24586 affects various versions of the Linux kernel, including specific distributions like Red Hat and Debian.
Can CVE-2020-24586 lead to data exposure?
Yes, CVE-2020-24586 can potentially lead to data exposure by unintentionally transmitting previous contents of WiFi fragments.
What is the impact of CVE-2020-24586?
The impact of CVE-2020-24586 allows attackers in proximity to exploit the flaw and intercept data transmissions.
- collector/redhat-cve
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/first-publish-date
- agent/weakness
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-24586
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/remedy
- agent/trending
- agent/last-modified-date
- agent/source
- agent/author
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/tags
- agent/event
- package-manager/redhat
- vendor/ieee
- canonical/ieee 802.11
- vendor/debian
- canonical/debian linux
- version/debian linux/9.0
- vendor/linux
- canonical/linux mac80211
- vendor/arista
- canonical/arista c-250 firmware
- canonical/arista c-260 firmware
- canonical/arista c-230 firmware
- canonical/arista c-235 firmware
- canonical/arista c-200 firmware
- vendor/intel
- canonical/intel wi-fi 6e ax210 firmware
- canonical/intel wi-fi 6 ax210
- canonical/intel wi-fi 6e ax201 firmware
- canonical/intel ax201 firmware
- canonical/intel ax200 firmware
- canonical/intel ac 9560 firmware
- canonical/intel wireless-ac 9560
- canonical/intel proset ac 9462 firmware
- canonical/intel proset ac 9462
- canonical/intel proset ac 9461 firmware
- canonical/intel proset ac 9461
- canonical/intel proset ac 9260 firmware
- canonical/intel proset wireless for ac 9260
- canonical/intel proset ac 8265 firmware
- canonical/intel ac 8265 firmware
- canonical/intel proset wireless software and drivers for ac 8260
- canonical/intel proset ac 8260
- canonical/intel ac3168 firmware
- canonical/intel ac 3168 firmware
- canonical/intel ac 7265
- canonical/intel ac 7265 firmware
- canonical/intel proset/wireless software for intel dual band wireless-ac 3165
- canonical/intel ac 3165 firmware
- canonical/intel killer wi-fi 6e ax1675 firmware
- canonical/intel ax1675 firmware
- canonical/intel killer wi-fi 6 ax1650 firmware
- canonical/intel ax1650 firmware
- canonical/intel ac 1550 firmware
- canonical/intel killer wireless-ac 1550
- canonical/linux kernel
- version/linux kernel/4.4
- version/linux kernel/4.9
- version/linux kernel/4.14
- version/linux kernel/4.19
- version/linux kernel/5.4
- version/linux kernel/5.10
- version/linux kernel/5.12
- package-manager/debian