{"id":"CVE-2024-57898","summary":"wifi: cfg80211: clear link ID from bitmap during link delete after clean up","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: clear link ID from bitmap during link delete after clean up\n\nCurrently, during link deletion, the link ID is first removed from the\nvalid_links bitmap before performing any clean-up operations. However, some\nfunctions require the link ID to remain in the valid_links bitmap. One\nsuch example is cfg80211_cac_event(). The flow is -\n\nnl80211_remove_link()\n    cfg80211_remove_link()\n        ieee80211_del_intf_link()\n            ieee80211_vif_set_links()\n                ieee80211_vif_update_links()\n                    ieee80211_link_stop()\n                        cfg80211_cac_event()\n\ncfg80211_cac_event() requires link ID to be present but it is cleared\nalready in cfg80211_remove_link(). Ultimately, WARN_ON() is hit.\n\nTherefore, clear the link ID from the bitmap only after completing the link\nclean-up.","modified":"2026-04-24T06:42:50.481608013Z","published":"2025-01-15T13:05:49.718Z","related":["USN-7379-2","USN-7380-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/57xxx/CVE-2024-57898.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/ae07daf440d3220d0986e676317a5da66e4f9dfd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b5c32ff6a3a38c74facdd1fe34c0d709a55527fd"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/57xxx/CVE-2024-57898.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-57898"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"d74380ee99b59a2e46612c12c85e701ab213f4ea"},{"fixed":"ae07daf440d3220d0986e676317a5da66e4f9dfd"},{"fixed":"b5c32ff6a3a38c74facdd1fe34c0d709a55527fd"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-57898.json"}}],"schema_version":"1.7.5"}