Linux Kernel cfg80211 Uninitialized Work Structure Vulnerability

A vulnerability in the Linux kernel's cfg80211 wireless configuration subsystem has been addressed. The issue arose from an uninitialized lock in the wiphy_work structure, which was not properly set before the allocation of rfkill, a mechanism for managing wireless device power. This oversight could lead to the wiphy release process accessing uninitialized data, causing potential instability. The vulnerability was identified during the handling of a new radio creation in the mac80211_hwsim virtual wireless driver.

Impact

The vulnerability could lead to accessing uninitialized memory, potentially causing undefined behavior or system instability.

Reproduction

The vulnerability can be reproduced by creating a new radio instance using the mac80211_hwsim driver, which will trigger the uninitialized wiphy_work lock issue during the wireless device release process.

Remediation

Users should upgrade to the latest stable version of the Linux kernel where this vulnerability has been fixed.