CVE-2024-50236
📋 TL;DR
This CVE describes a memory leak vulnerability in the Linux kernel's ath10k WiFi driver. When management packets are transmitted, memory allocated for MSDU contexts is not properly freed during completion or cleanup, leading to gradual memory exhaustion. This affects Linux systems using ath10k-based WiFi hardware, particularly Qualcomm WCN3990 chipsets.
💻 Affected Systems
- Linux kernel with ath10k driver
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Sustained exploitation could cause kernel memory exhaustion, leading to system instability, crashes, or denial of service requiring physical reboot.
Likely Case
Gradual memory consumption over time causing performance degradation, WiFi connectivity issues, or eventual system instability requiring restart.
If Mitigated
With proper patching, no impact beyond normal system operation.
🎯 Exploit Status
Exploitation requires ability to trigger management packet transmission through the ath10k driver, typically requiring local access or WiFi client capabilities.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Kernel commits: 2f6f1e26ac6d2b38e2198a71f81f0ade14d6b07b, 4112450da7d67b59ccedc2208bae622db17dbcb8, 5f5a939759c79e7385946c85e62feca51a18d816, 6cc23898e6ba47e976050d3c080b4d2c1add3748, 6fc9af3df6ca7f3c94774d20f62dc7b49616026d
Vendor Advisory: https://git.kernel.org/stable/c/2f6f1e26ac6d2b38e2198a71f81f0ade14d6b07b
Restart Required: Yes
Instructions:
1. Update Linux kernel to version containing fixes. 2. For distributions: Use package manager (apt/yum/dnf) to update kernel. 3. Reboot system to load new kernel.
🔧 Temporary Workarounds
Disable ath10k WiFi
linuxDisable the vulnerable ath10k driver if WiFi functionality is not required
sudo modprobe -r ath10k_core
sudo modprobe -r ath10k_pci
echo 'blacklist ath10k_core' | sudo tee /etc/modprobe.d/blacklist-ath10k.conf
echo 'blacklist ath10k_pci' | sudo tee -a /etc/modprobe.d/blacklist-ath10k.conf
🧯 If You Can't Patch
- Monitor system memory usage for unusual growth patterns
- Implement regular system reboots to clear accumulated memory leaks
🔍 How to Verify
Check if Vulnerable:
Check if ath10k driver is loaded: lsmod | grep ath10k. If loaded and kernel version is vulnerable, system is affected.Check Version:
uname -rVerify Fix Applied:
Check kernel version includes fix commits or verify via distribution security updates. Monitor for memory leaks after fix.📡 Detection & Monitoring
Log Indicators:
- Kernel oom-killer messages
- System memory exhaustion warnings
- dmesg showing memory allocation failures
Network Indicators:
- Unusual WiFi management packet patterns if monitoring is available
SIEM Query:
source="kernel" AND ("out of memory" OR "oom-killer" OR "ath10k")🔗 References
- https://git.kernel.org/stable/c/2f6f1e26ac6d2b38e2198a71f81f0ade14d6b07b
- https://git.kernel.org/stable/c/4112450da7d67b59ccedc2208bae622db17dbcb8
- https://git.kernel.org/stable/c/5f5a939759c79e7385946c85e62feca51a18d816
- https://git.kernel.org/stable/c/6cc23898e6ba47e976050d3c080b4d2c1add3748
- https://git.kernel.org/stable/c/6fc9af3df6ca7f3c94774d20f62dc7b49616026d
- https://git.kernel.org/stable/c/705be2dc45c7f852e211e16bc41a916fab741983
- https://git.kernel.org/stable/c/e15d84b3bba187aa372dff7c58ce1fd5cb48a076
- https://git.kernel.org/stable/c/eff818238bedb9c2484c251ec46f9f160911cdc0
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
