CVE-2024-57995: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-57995 is a vulnerability discovered in the Linux kernel affecting the ath12k WiFi driver. The issue was identified as a use-after-free vulnerability in the ath12k_mac_assign_vif_to_vdev() function. The vulnerability was disclosed on February 26, 2025, and affects Linux kernel versions from 6.10 up to (but not including) 6.13.2 (NVD).

The vulnerability occurs in the ath12k_mac_assign_vif_to_vdev() function of the Linux kernel's ath12k WiFi driver. When arvif is created on a different radio, it gets deleted through a call to ath12k_mac_unassign_link_vif(), which frees the arvif pointer. A subsequent check involving the freed arvif pointer results in a use-after-free condition. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD, Kernel Patch).

The vulnerability could potentially lead to system crashes, memory corruption, or privilege escalation due to the use-after-free condition in the kernel's WiFi driver. This affects systems using the QCN9274 hardware with the specified firmware version WLAN.WBE.1.3.1-00173-QCAHKSWPL_SILICONZ-1 (Kernel Patch).

A fix has been implemented by moving the arvif check after it is reassigned via the ath12k_mac_assign_link_vif() call. The patch has been merged into the Linux kernel. Users should upgrade to Linux kernel version 6.13.2 or later to address this vulnerability (Kernel Patch).