{"id":"CVE-2024-50008","summary":"wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()\n\nReplace one-element array with a flexible-array member in\n`struct host_cmd_ds_802_11_scan_ext`.\n\nWith this, fix the following warning:\n\nelo 16 17:51:58 surfacebook kernel: ------------[ cut here ]------------\nelo 16 17:51:58 surfacebook kernel: memcpy: detected field-spanning write (size 243) of single field \"ext_scan-\u003etlv_buffer\" at drivers/net/wireless/marvell/mwifiex/scan.c:2239 (size 1)\nelo 16 17:51:58 surfacebook kernel: WARNING: CPU: 0 PID: 498 at drivers/net/wireless/marvell/mwifiex/scan.c:2239 mwifiex_cmd_802_11_scan_ext+0x83/0x90 [mwifiex]","modified":"2026-04-16T04:37:24.629092679Z","published":"2024-10-21T18:54:01.348Z","related":["SUSE-SU-2024:3984-1","SUSE-SU-2024:3986-1","SUSE-SU-2024:4315-1","SUSE-SU-2024:4318-1","SUSE-SU-2024:4364-1","SUSE-SU-2024:4376-1","SUSE-SU-2024:4387-1","SUSE-SU-2025:20163-1","SUSE-SU-2025:20164-1","SUSE-SU-2025:20246-1","SUSE-SU-2025:20247-1","USN-7276-1","USN-7277-1","openSUSE-SU-2024:14500-1","openSUSE-SU-2025:14705-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50008.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/17199b69a84798efffc475040fbef44374ef1de1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1756918f51e9ab247a0f4782cc28853c2bb457c1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/498365e52bebcbc36a93279fe7e9d6aec8479cee"},{"type":"WEB","url":"https://git.kernel.org/stable/c/71267bd4e8c752d7af6c6b96bb83984a6a95273d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a3a12c30f9510f3753286fadbc6cdb7dad78c1d5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b55c8848fdc81514ec047b2a0ec782ffe9ab5323"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e59bdb1ba594104cd0ee0af3ee9e4435d842a8fe"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f9310a6704bf52e2493480edea896e1f9b795d40"},{"type":"WEB","url":"https://git.kernel.org/stable/c/fef7b51f22cf2049b0ca6740adeb0ba6f2e671dc"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50008.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-50008"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"21f58d200388480547df909b5464b5aafebf299d"},{"fixed":"b55c8848fdc81514ec047b2a0ec782ffe9ab5323"},{"fixed":"f9310a6704bf52e2493480edea896e1f9b795d40"},{"fixed":"1756918f51e9ab247a0f4782cc28853c2bb457c1"},{"fixed":"e59bdb1ba594104cd0ee0af3ee9e4435d842a8fe"},{"fixed":"17199b69a84798efffc475040fbef44374ef1de1"},{"fixed":"fef7b51f22cf2049b0ca6740adeb0ba6f2e671dc"},{"fixed":"71267bd4e8c752d7af6c6b96bb83984a6a95273d"},{"fixed":"a3a12c30f9510f3753286fadbc6cdb7dad78c1d5"},{"fixed":"498365e52bebcbc36a93279fe7e9d6aec8479cee"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50008.json"}}],"schema_version":"1.7.5"}