Lucene search
+L

12254 matches found

NVD
NVD
added 2026/06/24 5:17 p.m.11 views

CVE-2026-53102

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix memory leak after mt76connacmcuallocstareq mt76connacmcuallocstareq allocates an skb which is expected to be freed eventually by mt76mcuskbsendmsg. However, currently if an intermediate function fails before...

0.00156EPSS
Exploits0References2
NVD
NVD
added 2026/06/24 5:17 p.m.11 views

CVE-2026-53105

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL vif dereference in mt7925macwritetxwi Check for a NULL vif before accessing ieee80211vifismldvif to avoid a potential kernel panic in scenarios where vif might not be initialized...

0.00168EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.20 views

CVE-2026-53101

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix potential deadlock in mt7921rocabortsync rocabortsync can deadlock with rocwork. rocwork holds dev-mt76.mutex, while cancelworksync waits for rocwork to finish. If the caller already owns the same mutex,...

0.00168EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.14 views

CVE-2026-53103

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix potential deadlock in mt7925rocabortsync rocabortsync can deadlock with rocwork. rocwork holds dev-mt76.mutex, while cancelworksync waits for rocwork to finish. If the caller already owns the same mutex,...

0.00166EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.11 views

CVE-2026-53104

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix memory leak destroying device All MT76 rx queues have an associated pagepool even if the queue is not associated to a NAPI e.g. WED RRO queues with WED enabled. Destroy the pagepool running mt76dmacleanup routine...

0.00166EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.12 views

CVE-2026-53107

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: don't kill URBs in interrupt context Serialization for the TX path was enforced by calling usbkillurb/usbkillanchoredurbs, to prevent transmission before a previous URB was completed. usbtxblock can be called from...

0.00155EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.15 views

CVE-2026-53097

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix use-after-free bugs in mt7996macdumpwork When the mt7996 pci chip is detaching, the mt7996crashdata is released in mt7996coredumpunregister. However, the work item dumpwork may still be running or pending,...

0.00168EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.10 views

CVE-2026-53093

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix error pointer dereference The function brcmfchipaddcore can return an error pointer and is not checked. Add checks for error pointer. Detected by Smatch:...

0.00176EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:30 p.m.15 views

CVE-2026-53113

The CVE-2026-53113 entry concerns the Linux kernel wifi driver ath11k, where beacon template setup functions ath11k_mac_setup_bcn_tmpl_ema() and ath11k_mac_setup_bcn_tmpl_mbssid() allocate memory for beacon templates but fail to release it on error. The issue is addressed by implementing unified ...

5.8AI score0.00159EPSS
Exploits0References2
OSV
OSV
added 2026/06/24 4:30 p.m.2 views

CVE-2026-53112 wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet

In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irqpreparebcntasklet The irqpreparebcntasklet is initialized in rtlpciinit and scheduled when RTLIMRBCNINT interrupt is triggered by hardware. But it is never...

5.8AI score0.00164EPSS
Exploits0References11
CVE
CVE
added 2026/06/24 4:30 p.m.12 views

CVE-2026-53107

The CVE-2026-53107 entry documents a Linux kernel WiFi libertas issue where URBs could be killed in interrupt context. The fix removes usb_tx_block() as a universal weapon for in-flight URBs in interrupt paths and instead checks the tx_submitted anchor to detect pending URBs, returning -EBUSY whe...

5.7AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/24 4:30 p.m.6 views

EUVD-2026-38975

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: don't kill URBs in interrupt context Serialization for the TX path was enforced by calling usbkillurb/usbkillanchoredurbs, to prevent transmission before a previous URB was completed. usbtxblock can be called from...

5.7AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 4:30 p.m.3 views

CVE-2026-53107 wifi: libertas: don't kill URBs in interrupt context

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: don't kill URBs in interrupt context Serialization for the TX path was enforced by calling usbkillurb/usbkillanchoredurbs, to prevent transmission before a previous URB was completed. usbtxblock can be called from...

5.8AI score0.00155EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/24 4:30 p.m.8 views

EUVD-2026-38973

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL vif dereference in mt7925macwritetxwi Check for a NULL vif before accessing ieee80211vifismldvif to avoid a potential kernel panic in scenarios where vif might not be initialized...

5.7AI score0.00168EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.9 views

EUVD-2026-38971

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix potential deadlock in mt7925rocabortsync rocabortsync can deadlock with rocwork. rocwork holds dev-mt76.mutex, while cancelworksync waits for rocwork to finish. If the caller already owns the same mutex,...

5.7AI score0.00166EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/24 4:30 p.m.9 views

EUVD-2026-38972

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix memory leak destroying device All MT76 rx queues have an associated pagepool even if the queue is not associated to a NAPI e.g. WED RRO queues with WED enabled. Destroy the pagepool running mt76dmacleanup routine...

5.8AI score0.00166EPSS
Exploits0References3
CVE
CVE
added 2026/06/24 4:30 p.m.11 views

CVE-2026-53104

The CVE-2026-53104 entry concerns the Linux kernel’s MT76 wifi driver. The issue is a memory leak in MT76 rx queues related to page pools: all rx queues have an associated page_pool even if not connected to a NAPI, and the mt76_dma_cleanup routine must destroy the page_pool during module unload. ...

5.8AI score0.00166EPSS
Exploits0References3
CVE
CVE
added 2026/06/24 4:30 p.m.11 views

CVE-2026-53103

CVE-2026-53103 concerns the Linux kernel wifi driver stack, specifically the mt76/mt7925 components. The issue is a potential deadlock between roc_abort_sync() and roc_work(): roc_work() holds dev->mt76.mutex while cancel_work_sync() waits for roc_work() to complete. If the caller already owns...

5.7AI score0.00166EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 4:30 p.m.5 views

CVE-2026-53103 wifi: mt76: mt7925: fix potential deadlock in mt7925_roc_abort_sync

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix potential deadlock in mt7925rocabortsync rocabortsync can deadlock with rocwork. rocwork holds dev-mt76.mutex, while cancelworksync waits for rocwork to finish. If the caller already owns the same mutex,...

5.8AI score0.00166EPSS
Exploits0References6
CVE
CVE
added 2026/06/24 4:30 p.m.11 views

CVE-2026-53102

Summary of CVE-2026-53102 (Linux kernel / wifi: mt76): The vulnerability concerns a memory leak in the mt76 driver for the mt76 wireless stack. Specifically, in mt76_connac_mcu_alloc_sta_req(), an skb allocated for MCU messaging is expected to be freed by mt76_mcu_skb_send_msg(), but if intermedi...

5.8AI score0.00156EPSS
Exploits0References2
Rows per page
Query Builder