In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode Currently, whenever there is a need to transmit an Action frame, the brcmfmac driver always uses the P2P vif to send the "actframe" IOVAR to firmware. The P2P interfaces were available when wpa_supplicant is managing the wlan interface. However, the P2P interfaces are not created/initialized when only hostapd is managing the wlan interface. And if hostapd receives an ANQP Query REQ Action frame even from an un-associated STA, the brcmfmac driver tries…
GHSA-px3f-ppm2-rx2r: In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix crash...
A vulnerability in the Linux kernel's brcmfmac driver causes crashes when sending Action Frames in standalone AP Mode, affecting systems using hostapd.