CVE-2022-49539

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> rtw89: ser: fix CAM leaks occurring in L2 reset<br /> <br /> The CAM, meaning address CAM and bssid CAM here, will get leaks during<br /> SER (system error recover) L2 reset process and ieee80211_restart_hw()<br /> which is called by L2 reset process eventually.<br /> <br /> The normal flow would be like<br /> -&gt; add interface (acquire 1)<br /> -&gt; enter ips (release 1)<br /> -&gt; leave ips (acquire 1)<br /> -&gt; connection (occupy 1) <br /> <br /> The ieee80211_restart_hw() flow (under connection)<br /> -&gt; ieee80211 reconfig<br /> -&gt; add interface (acquire 1)<br /> -&gt; leave ips (acquire 1)<br /> -&gt; connection (occupy (A) + 2) <br /> <br /> Originally, CAM is released before HW restart only if connection is under<br /> security. Now, release CAM whatever connection it is to fix leak in (A).<br /> OTOH, check if CAM is already valid to avoid acquiring multiple times to<br /> fix (B).<br /> <br /> Besides, if AP mode, release address CAM of all stations before HW restart.