Linux Kernel WoWLAN Shutdown Hook Vulnerability in RSI Wireless Driver
Vulnerability
A vulnerability exists in the Linux kernel's handling of Wake on WLAN (WoWLAN) for the RSI wireless driver. During system shutdown, the driver improperly manages WoWLAN configurations that were never set, leading to potential null pointer dereferences. This issue affects the Linux kernel stable tree.
Impact
The vulnerability can cause a null pointer dereference during the shutdown process of the RSI wireless driver, which could lead to a system crash.
Reproduction
The vulnerability can be reproduced by using a wireless adapter that relies on the RSI driver and not configuring WoWLAN before shutting down the system. During the shutdown process, the driver will attempt to access a null WoWLAN configuration, causing a null pointer dereference.
Remediation
Users can update to the latest version of the Linux kernel where this vulnerability has been addressed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.