What is the severity of CVE-2024-46860?

CVE-2024-46860 has been classified as a medium severity vulnerability due to the potential for NULL pointer dereference during the wifi disable process.

How do I fix CVE-2024-46860?

To resolve CVE-2024-46860, users should update their Linux kernel to version 6.12.11-1 or later.

Which versions of the Linux kernel are affected by CVE-2024-46860?

CVE-2024-46860 affects Linux kernel versions from 6.7 through 6.10.11 and specific release candidates of 6.11.

What component of the Linux kernel is impacted by CVE-2024-46860?

CVE-2024-46860 impacts the wifi driver for the mt76 chipset, specifically during IPv6 address changes.

Is CVE-2024-46860 a local or remote vulnerability?

CVE-2024-46860 is considered a local vulnerability as it requires local access to the device to exploit.

Vulnerability/
CVE-2024-46860

medium

5.5

CWE

476

27/9/2024

17/1/2025

CVE-2024-46860: wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change

First published: Fri Sep 27 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change When disabling wifi mt7921_ipv6_addr_change() is called as a notifier. At this point mvif->phy is already NULL so we cannot use it here.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	<6.6.52
Linux Kernel	>=6.7<6.10.11
Linux Kernel	=6.11-rc1
Linux Kernel	=6.11-rc2
Linux Kernel	=6.11-rc3
debian/linux	<=5.10.223-1<=5.10.226-1<=6.1.123-1<=6.1.119-1	6.12.11-1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-46860?
CVE-2024-46860 has been classified as a medium severity vulnerability due to the potential for NULL pointer dereference during the wifi disable process.
How do I fix CVE-2024-46860?
To resolve CVE-2024-46860, users should update their Linux kernel to version 6.12.11-1 or later.
Which versions of the Linux kernel are affected by CVE-2024-46860?
CVE-2024-46860 affects Linux kernel versions from 6.7 through 6.10.11 and specific release candidates of 6.11.
What component of the Linux kernel is impacted by CVE-2024-46860?
CVE-2024-46860 impacts the wifi driver for the mt76 chipset, specifically during IPv6 address changes.
Is CVE-2024-46860 a local or remote vulnerability?
CVE-2024-46860 is considered a local vulnerability as it requires local access to the device to exploit.

agent/title
agent/type
agent/first-publish-date
agent/weakness
agent/severity
agent/remedy
agent/references
agent/author
agent/trending
collector/usn-cve
source/Ubuntu
agent/event
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-api
agent/softwarecombine
agent/tags
collector/security-tracker-debian
source/Debian
vendor/linux
canonical/linux kernel
version/linux kernel/6.7
version/linux kernel/6.11-rc1
version/linux kernel/6.11-rc2
version/linux kernel/6.11-rc3
package-manager/debian

Frequently Asked Questions

What is the severity of CVE-2024-46860?
CVE-2024-46860 has been classified as a medium severity vulnerability due to the potential for NULL pointer dereference during the wifi disable process.
How do I fix CVE-2024-46860?
To resolve CVE-2024-46860, users should update their Linux kernel to version 6.12.11-1 or later.
Which versions of the Linux kernel are affected by CVE-2024-46860?
CVE-2024-46860 affects Linux kernel versions from 6.7 through 6.10.11 and specific release candidates of 6.11.
What component of the Linux kernel is impacted by CVE-2024-46860?
CVE-2024-46860 impacts the wifi driver for the mt76 chipset, specifically during IPv6 address changes.
Is CVE-2024-46860 a local or remote vulnerability?
CVE-2024-46860 is considered a local vulnerability as it requires local access to the device to exploit.

CVE-2024-46860: wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-46860?

How do I fix CVE-2024-46860?

Which versions of the Linux kernel are affected by CVE-2024-46860?

What component of the Linux kernel is impacted by CVE-2024-46860?

Is CVE-2024-46860 a local or remote vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2024-46860?

How do I fix CVE-2024-46860?

Which versions of the Linux kernel are affected by CVE-2024-46860?

What component of the Linux kernel is impacted by CVE-2024-46860?

Is CVE-2024-46860 a local or remote vulnerability?