38 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes When moving a station out of a VLAN and deleting the VLAN afterwards, the fastrx entry still holds a pointer to the VLAN’s netdev. This can lead to use-after-free...
ROS-20260414-73-0058
A vulnerability in the ieee80211rxhaction function in the net/mac80211/rx.c module of the mac80211 stack implementation of the Linux operating system kernel is related to memory reads outside of the allocated buffer. Exploitation of the vulnerability may allow an intruder to affect confidentialit...
Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2026-1450)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1450 advisory. MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service CVE-2025-11626 Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial...
openSUSE 16 Security Update : wireshark (openSUSE-SU-2026:20151-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20151-1 advisory. Update to Wireshark 4.4.13: - CVE-2025-11626: MONGO dissector infinite loop bsc1251933. - CVE-2025-13499: Kafka dissector crash bsc1254108. -...
SUSE SLED15: libwireshark17 / libwiretap14 / libwsutil15 / wireshark / etc (SUSE-SU-2026:0237-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0237-1 advisory. - CVE-2026-0959: IEEE 802.11 dissector crash bsc1256734. - CVE-2026-0960: HTTP3 dissector infini...
Wireshark 4.6.x < 4.6.3 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 4.6.3. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.6.3 advisory. - SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service...
Wireshark 4.6.x < 4.6.3 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.6.3. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.6.3 advisory. - SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of...
CVE-2026-0959
A flaw was found in Wireshark. A remote attacker could exploit a crash in the IEEE 802.11 protocol dissector by crafting a malicious network packet. This vulnerability leads to a denial of service, making the Wireshark application unavailable. Mitigation To mitigate this issue, users should avoid...
CVE-2026-0959
IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service...
CVE-2023-43533
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame...
PT-2026-26049
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s mac80211 wireless subsystem contains a flaw related to insufficient bounds checking of the link id variable within the ieee80211 ml reconfiguration function. The link ...
CVE-2022-50881
CVE-2022-50881 concerns the Linux kernel’s wifi driver ath9k (ath9k_htc) and describes a use-after-free in ath9k_destroy_wmi() triggered during usb disconnect handling. The root cause is access to drv_priv after ieee80211_free_hw() frees hardware in ath9k_htc_hw_deinit(), leading to a use-after-f...
PT-2025-54134
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fortify the spinlock against deadlock by interrupt In the function ieee80211 tx dequeue there is a particular locking sequence: begin: spin lock&local-queue stop reason lock; q stopped = local-queue stop reasonsq;...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414341)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414341 advisory. An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211P2PATTROPERCHANNEL in drivers/net/wireless/microchip/wilc1000/cfg80211.c in...
EUVD-2022-55224
Malicious code in bioql PyPI...
SUSE CVE-2025-38644
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject TDLS operations when station is not associated syzbot triggered a WARN in ieee80211tdlsoper by sending NL80211TDLSENABLELINK immediately after NL80211CMDCONNECT, before association completed and without pri...
SUSE CVE-2025-37745
In the Linux kernel, the following vulnerability has been resolved: PM: hibernate: Avoid deadlock in hibernatecompressorparamset syzbot reported a deadlock in locksystemsleep see below. The write operation to "/sys/module/hibernate/parameters/compressor" conflicts with the registration of ieee802...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: rtw89: ser: fix CAM leaks occurring in L2 reset The CAM, meaning address CAM and bssid CAM here, will get leaks during SER system error recover L2 reset process and ieee80211restarthw which is called by L2 reset process eventuall...
AZL-56118 CVE-2024-48873 affecting package kernel for versions less than 6.6.76.1-1
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: check return value of ieee80211probereqget for RNR The return value of ieee80211probereqget might be NULL, so check it before using to avoid NULL pointer access. Addresses-Coverity-ID: 1529805 "Dereference null retur...
PT-2025-30825
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw where an attempt to ping a device that failed to load firmware can cause a null-pointer dereference. This occurs because the device does not successfully...