413 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: cfg80211: Fixed an issue where out-of-bounds access occurred during the multi-link element defragmentation process. Currently, during the multi-link element defragmentation process, the length of the multi-link element is...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: ocb: don’t leave if not joined If there is no OCB state, do not ask the driver/mac80211 to leave, as that would only cause confusion. Since the chandef state can be set or cleared, this is a simple check...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: cfg80211 – Reject authentication/association requests to APs using our own address. If the AP uses our own address as its MLD Media Access Layer address or BSSID Basic Service Set Identifier, then something is clearly wrong...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: brcmfmac – Fixed a use-after-free bug in brcmfcfg80211detach. This is the candidate patch for CVE-2023-47233: https://nvd.nist.gov/vuln/detail/CVE-2023-47233 In the brcm80211 driver, the process starts with the following...
Astra Linux - уязвимость в linux-5.10, linux, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext The key information in wext.connect is not reset upon reconnection, and it may retain data from a previous connection. Resetting the key data prevents drivers or mac80211 from incorrect...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: regulatory: improve invalid hints checking Syzbot continues to report a issue 1 that occurs when erroneous symbols sent from userspace get through into useralpha2 via the regulatoryhintuser call. Such invalid...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: wext: Added an additional check for the number of channels returned by ioctlsock, SIOCSIWSCAN,..., to ensure that this number does not exceed IWMAXFREQUENCIES. Invalid requests will be rejected with the error...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: Wifi: cfg80211 – Fix for buffer overflow in elem comparison. For vendor elements, the code assumes that 5 octets are present without checking them. Since the element itself has already been checked for compatibility, we only need...
Astra Linux - уязвимость в linux-6.1, linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: Wifi: cfg80211: A use-after-free issue was addressed in the cmpbss function. This issue was introduced due to a quirky behavior of the bssfree function introduced in commit 776b3580178f „cfg80211: Properly track hidden SSID...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: cfg80211: handling of 2x996 RU allocation in cfg80211calculatebitratehe Currently, NL80211RATEINFOHERUALLOC2x996 is not handled in cfg80211calculatebitratehe, resulting in the following warning: kernel: Invalid HE MCS: bw:6...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: mwifiex: bring down the link before deleting the interface We can encounter a deadlock when using rmmod to remove the driver or during firmware reset. This is because the cfg80211unregisterwdev function must bring down the link f...
EUVD-2026-28688
In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid double-rtnllock ELP metric worker batadvvelpgetthroughput might be called when the RTNL lock is already held. This could be problematic when the work queue item is cancelled via canceldelayedworksync in...
UBUNTU-CVE-2026-43382
In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid double-rtnllock ELP metric worker batadvvelpgetthroughput might be called when the RTNL lock is already held. This could be problematic when the work queue item is cancelled via canceldelayedworksync in...
PT-2026-39043
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock can occur in the batman-adv module when the batadv v elp get throughput function is called while the RTNL Routing Netlink lock is already held. This specifically happens when ...
CVE-2026-43225
A flaw was found in the Linux kernel's rtl8723bs component. This memory leak vulnerability occurs when the cfg80211informbssframe function returns a NULL value on a failure path, preventing the allocated buffer from being properly freed. This can lead to a potential memory leak within the system...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the situation where the cfg80211informbssframe function returns NULL without releasing the buffer...
CVE-2026-31548
A flaw was found in the Linux kernel's cfg80211 Wi-Fi subsystem. When a Wi-Fi interface is shut down, a scheduled work item pmsrfreewk may not be properly cancelled. This can lead to the work item attempting to operate on an already removed interface, resulting in undefined behavior and potential...
DEBIAN-CVE-2026-31548
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel pmsrfreewk in cfg80211pmsrwdevdown When the nl80211 socket that originated a PMSR request is closed, cfg80211releasepmsr sets the request's nlportid to zero and schedules pmsrfreewk to process the abort...
CVE-2026-31548
CVE-2026-31548 (Linux kernel, wifi/cfg80211) : A race during interface teardown can cause a pending pmsr_free_wk work item to run after the interface has been removed, leading to undefined behavior or crashes if the driver abort_pmsr callback is invoked on a torn-down interface. The advisory stat...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006701)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006701 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmpbss Following bssfree quirk introduced in commit...