What is the severity of CVE-2024-36970?

CVE-2024-36970 has a moderate severity level due to its potential to cause deadlock issues.

How do I fix CVE-2024-36970?

To fix CVE-2024-36970, update your Linux kernel to version 6.9.2 or later.

What does CVE-2024-36970 affect?

CVE-2024-36970 affects the Linux kernel specifically from version 6.9 up to 6.9.2.

What issues does CVE-2024-36970 address?

CVE-2024-36970 addresses a deadlock regression that can occur with multiple iwlwifi radios.

Who is impacted by CVE-2024-36970?

Users with systems running affected versions of the Linux kernel, especially those with many iwlwifi radios, are impacted by CVE-2024-36970.

Vulnerability/
CVE-2024-36970

medium

5.5

CWE

667

8/6/2024

3/2/2025

CVE-2024-36970: wifi: iwlwifi: Use request_module_nowait

First published: Sat Jun 08 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Use request_module_nowait This appears to work around a deadlock regression that came in with the LED merge in 6.9. The deadlock happens on my system with 24 iwlwifi radios, so maybe it something like all worker threads are busy and some work that needs to complete cannot complete. [also remove unnecessary "load_module" var and now-wrong comment]

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Red Hat Kernel-devel	>6.9
Linux Kernel	>=6.9<6.9.2

Remedy

https://git.kernel.org/stable/c/3d913719df14c28c4d3819e7e6d150760222bda4

Remedy

https://git.kernel.org/stable/c/d20013259539e2fde2deeac85354851097afdf9e

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-36970?
CVE-2024-36970 has a moderate severity level due to its potential to cause deadlock issues.
How do I fix CVE-2024-36970?
To fix CVE-2024-36970, update your Linux kernel to version 6.9.2 or later.
What does CVE-2024-36970 affect?
CVE-2024-36970 affects the Linux kernel specifically from version 6.9 up to 6.9.2.
What issues does CVE-2024-36970 address?
CVE-2024-36970 addresses a deadlock regression that can occur with multiple iwlwifi radios.
Who is impacted by CVE-2024-36970?
Users with systems running affected versions of the Linux kernel, especially those with many iwlwifi radios, are impacted by CVE-2024-36970.

agent/references
agent/description
agent/type
agent/first-publish-date
agent/title
agent/author
collector/mitre-cve
source/MITRE
agent/source
agent/severity
agent/remedy
agent/weakness
agent/last-modified-date
agent/event
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/guess-ai
vendor/linux
canonical/linux kernel
version/linux kernel/6.9
canonical/red hat kernel-devel

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.