In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: don't set the MFP flag for the GTK
The firmware doesn't need the MFP flag for the GTK, it can even make the firmware crash. in case the AP is configured with: group cipher TKIP and MFPC. We would send the GTK with cipher = TKIP and MFP which is of course not possible.
{ "vanir_signatures": [ { "id": "CVE-2024-27434-2a1191b4", "target": { "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b4f1b0b3b91762edd19bf9d3b2e4c3a0740501f8", "digest": { "threshold": 0.9, "line_hashes": [ "294677524809182683172125718255422456754", "52788186392597768635704431851308456300", "287989077565129164509635884290486998044", "292850442246325564660157078348234988069", "311832960001106659301734879340707210806", "157867471254197763922272223577384701439", "237310616384672586184985011399312928404", "177779314423827293504867565732694844785", "38759441188551875651882817974811157481", "276114396817864641822454321485912105699", "146365086236792703736012436476179651966", "286062200978789971365138438332636399013", "50420765055803858659893300340534719211", "291734179541420360125837368038614671815" ] }, "signature_version": "v1", "deprecated": false, "signature_type": "Line" }, { "id": "CVE-2024-27434-453ae51e", "target": { "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e35f316bce9e5733c9826120c1838f4c447b2c4c", "digest": { "threshold": 0.9, "line_hashes": [ "294677524809182683172125718255422456754", "52788186392597768635704431851308456300", "287989077565129164509635884290486998044", "292850442246325564660157078348234988069", "311832960001106659301734879340707210806", "157867471254197763922272223577384701439", "237310616384672586184985011399312928404", "177779314423827293504867565732694844785", "38759441188551875651882817974811157481", "276114396817864641822454321485912105699", "146365086236792703736012436476179651966", "286062200978789971365138438332636399013", "339658428583992329008075074296982640954", "186419859631563735114354282602745326278" ] }, "signature_version": "v1", "deprecated": false, "signature_type": "Line" }, { "id": "CVE-2024-27434-51b448c0", "target": { "function": "iwl_mvm_get_sec_flags", "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b4f1b0b3b91762edd19bf9d3b2e4c3a0740501f8", "digest": { "function_hash": "189897057424887767751248839642409728061", "length": 1135.0 }, "signature_version": "v1", "deprecated": false, "signature_type": "Function" }, { "id": "CVE-2024-27434-5de40383", "target": { "function": "iwl_mvm_get_sec_flags", "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40405cbb20eb6541c603e7b3d54ade0a7be9d715", "digest": { "function_hash": "189897057424887767751248839642409728061", "length": 1135.0 }, "signature_version": "v1", "deprecated": false, "signature_type": "Function" }, { "id": "CVE-2024-27434-65283628", "target": { "function": "iwl_mvm_get_sec_flags", "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e35f316bce9e5733c9826120c1838f4c447b2c4c", "digest": { "function_hash": "183153228833749186352897615838534390892", "length": 1222.0 }, "signature_version": "v1", "deprecated": false, "signature_type": "Function" }, { "id": "CVE-2024-27434-65b3b976", "target": { "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@60f6d5fc84a9fd26528a24d8a267fc6a6698b628", "digest": { "threshold": 0.9, "line_hashes": [ "294677524809182683172125718255422456754", "52788186392597768635704431851308456300", "287989077565129164509635884290486998044", "292850442246325564660157078348234988069", "311832960001106659301734879340707210806", "157867471254197763922272223577384701439", "237310616384672586184985011399312928404", "177779314423827293504867565732694844785", "38759441188551875651882817974811157481", "276114396817864641822454321485912105699", "146365086236792703736012436476179651966", "286062200978789971365138438332636399013", "50420765055803858659893300340534719211", "291734179541420360125837368038614671815" ] }, "signature_version": "v1", "deprecated": false, "signature_type": "Line" }, { "id": "CVE-2024-27434-90b1b808", "target": { "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40405cbb20eb6541c603e7b3d54ade0a7be9d715", "digest": { "threshold": 0.9, "line_hashes": [ "294677524809182683172125718255422456754", "52788186392597768635704431851308456300", "287989077565129164509635884290486998044", "292850442246325564660157078348234988069", "311832960001106659301734879340707210806", "157867471254197763922272223577384701439", "237310616384672586184985011399312928404", "177779314423827293504867565732694844785", "38759441188551875651882817974811157481", "276114396817864641822454321485912105699", "146365086236792703736012436476179651966", "286062200978789971365138438332636399013", "50420765055803858659893300340534719211", "291734179541420360125837368038614671815" ] }, "signature_version": "v1", "deprecated": false, "signature_type": "Line" }, { "id": "CVE-2024-27434-95d94264", "target": { "function": "iwl_mvm_get_sec_flags", "file": "drivers/net/wireless/intel/iwlwifi/mvm/mld-key.c" }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@60f6d5fc84a9fd26528a24d8a267fc6a6698b628", "digest": { "function_hash": "189897057424887767751248839642409728061", "length": 1135.0 }, "signature_version": "v1", "deprecated": false, "signature_type": "Function" } ] }