Lucene search
K

85 matches found

OSV
OSV
added 2026/02/02 10:33 a.m.18 views

CLSA-2026-1770028389 kernel: Fix of 14 CVEs

efivarfs: Fix slab-out-of-bounds in efivarfsdcompare CVE-2025-39817 - scsi: ses: Fix possible descptr out-of-bounds accesses CVE-2023-53675 - ipv6: Fix out-of-bounds access in ipv6findtlv CVE-2023-53705 - libceph: fix potential use-after-free in havemonandosdmap CVE-2025-68285 - scsi: lpfc: Fix...

7.8CVSS6AI score0.00225EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: init wiphywork before allocating rfkill fails syzbort reported a uninitialize wiphyworklock in cfg80211devfree. 1 After rfkill allocation fails, the wiphy release process will be performed, which will cause...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is greater than IEEE80211MAXSSIDLEN 32, it could lead to memory corruption. Therefore, bounds checking has been added...

7.8CVSS6.4AI score0.00144EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/05 12:0 a.m.6 views

PT-2026-1247

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A memory leak issue was identified and resolved in the Linux kernel’s wifi subsystem, specifically within the rtl8180 init rx ring function. This function allocates memory for skb packet...

4.6CVSS6.5AI score0.00165EPSS
Exploits0
NVD
NVD
added 2025/12/24 11:15 a.m.3 views

CVE-2023-53992

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: ocb: don't leave if not joined If there's no OCB state, don't ask the driver/mac80211 to leave, since that's just confusing. Since set/clear the chandef state, that's a simple check...

0.00167EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-52949

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s wifi subsystem, specifically within the cfg80211 and OCB Operation Channel Binding components. The issue involves unnecessary requests to the driver o...

6.2AI score0.00167EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/11/12 12:41 p.m.6 views

kernel: wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

7.8CVSS5.7AI score0.00144EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 5:21 a.m.6 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring Syste...

8CVSS6.7AI score0.0033EPSS
Exploits0References12
OSV
OSV
added 2025/10/24 10:12 a.m.3 views

SUSE-SU-2025:20907-1 Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: - CVE-2025-21971: netsched: Prevent creation of classes with TCHROOT bsc1245794 - CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 - CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem...

7.8CVSS6.6AI score0.00528EPSS
Exploits1References19
SUSE CVE
SUSE CVE
added 2025/09/19 11:23 p.m.5 views

SUSE CVE-2025-39849

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

5.5CVSS6.6AI score0.00144EPSS
Exploits0References24
SUSE CVE
SUSE CVE
added 2025/09/19 11:23 p.m.5 views

SUSE CVE-2025-39864

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmpbss Following bssfree quirk introduced in commit 776b3580178f "cfg80211: track hidden SSID networks properly", adjust cfg80211updateknownbss to free the last beacon frame elements only if...

5.5CVSS6.6AI score0.00152EPSS
Exploits0References23
CVE
CVE
added 2025/09/19 3:26 p.m.33 views

CVE-2025-39864

CVE-2025-39864 affects the Linux kernel wifi subsystem (cfg80211) and specifically the cmp_bss() path after a use-after-free in bss_free(). The fix, applied via commits addressing the hidden_beacon_bss handling, ensures the last beacon frame elements are freed only when not shared by the hidden_b...

7.8CVSS6.2AI score0.00152EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2025/09/19 3:26 p.m.8 views

CVE-2025-39849 wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

0.00144EPSS
Exploits0References5
CVE
CVE
added 2025/09/19 3:26 p.m.41 views

CVE-2025-39849

CVE-2025-39849 refers to a Linux kernel vulnerability in the wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() path. The issue allows memory corruption if ssid->datalen exceeds IEEE80211_MAX_SSID_LEN (32) due to missing bounds checks. The connected documents confirm this CVE ...

7.8CVSS6.2AI score0.00144EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2025/09/19 3:26 p.m.6 views

CVE-2025-39849

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

7.8CVSS6.4AI score0.00144EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/09/18 11:40 p.m.5 views

SUSE CVE-2023-53153

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext Key information in wext.connect is not reset on reconnect and can hold data from a previous connection. Reset key data to avoid that drivers or mac80211 incorrectly detect a WEP...

5.5CVSS6.3AI score0.00149EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.6 views

PT-2025-38449

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak was resolved in the mt76 dma tx cleanup routine within the Linux kernel’s Wi-Fi subsystem. The fix addresses a memory leak that occurred during device unregistration and...

6AI score0.00119EPSS
Exploits0References4
OSV
OSV
added 2025/09/15 2:15 p.m.2 views

DEBIAN-CVE-2023-53153

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext Key information in wext.connect is not reset on reconnect and can hold data from a previous connection. Reset key data to avoid that drivers or mac80211 incorrectly detect a WEP...

7.8CVSS5.6AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/09/15 2:15 p.m.4 views

UBUNTU-CVE-2022-50258

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...

7.8CVSS6AI score0.00153EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/08/24 4:7 p.m.5 views

CVE-2025-38643

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Add missing lock in cfg80211checkandendcac Callers of wdevchandef must hold the wiphy mutex. But the worker cfg80211propagatecacdonewk never takes the lock. Which triggers the warning below with the...

4.1CVSS6.6AI score0.00111EPSS
Exploits0References4
Rows per page
Query Builder