CVE-2024-43881

wifi: ath12k: change DMA direction while mapping reinjected packets

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: change DMA direction while mapping reinjected packets For fragmented packets, ath12k reassembles each fragment as a normal packet and then reinjects it into HW ring. In this case, the DMA direction should be DMA_TO_DEVICE, not DMA_FROM_DEVICE. Otherwise, an invalid payload may be reinjected into the HW and subsequently delivered to the host. Given that arbitrary memory can be allocated to the skb buffer, knowledge about the data contained in the reinjected buffer is lacking. Consequently, there’s a risk of private information being leaked. Tested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.1.1-00209-QCAHKSWPL_SILICONZ-1

N/A
CVSS
Severity:
EPSS 0.08%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/e99d9b16ff153de9540073239d24adc3b0a3a997
https://git.kernel.org/stable/c/6925320fcd40d8042d32bf4ede8248e7a5315c3b
https://git.kernel.org/stable/c/33322e3ef07409278a18c6919c448e369d66a18e

Frequently Asked Questions

What is the severity of CVE-2024-43881?
CVE-2024-43881 has not yet been assigned a CVSS score.
How to fix CVE-2024-43881?
To fix CVE-2024-43881, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-43881 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-43881 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-43881?
CVE-2024-43881 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.