In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check tdls flag in ieee80211_tdls_oper When NL80211_TDLS_ENABLE_LINK is called, the code only checks if the station exists but not whether it is actually a TDLS station. This allows the operation to proceed for non-TDLS stations, causing unintended side effects like modifying channel context and HT protection before failing. Add a check for sta->sta.tdls early in the ENABLE_LINK case, before any side effects occur, to ensure the operation is only allowed for actual TDLS peers.
| Product | Vendor | Version |
|---|---|---|
| Linux | Linux | Magento 2.2 prior to 2.2.10 |
| Linux | Linux | Magento 2.3 prior to 2.3.3 or 2.3.2-p1 |
| Linux | Linux | Fixed in 3.10 |
| Linux | Linux | < 6.2.9200.23517 |