535 matches found
Astra Linux – Vulnerability in Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: mt76: Fixed a use-after-free by removing a non-RCU wcid pointer. This fix addresses an issue detected by KASAN regarding use-after-free in mt76txqschedule. This was done by protecting mtxq-wcid with rculock between...
SUSE CVE-2026-46136
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix a potential clc buffer length underflow The buflen is used to limit the iterations for retrieving the country power setting and may underflow under certain conditions due to changes in the power table in...
CVE-2026-46136
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix a potential clc buffer length underflow The buflen is used to limit the iterations for retrieving the country power setting and may underflow under certain conditions due to changes in the power table in...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: mt7921e: Fix use-after-free in freeirq From the commit “a304e1b82808” “PATCH Debug shared irqs”, there is a test to ensure that the shared irq handler should be able to handle unexpected events after deregistration. I...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: mt7996 – fixed a potential memory leak when reading chip temperature. Without this fix, reading chip temperature would cause memory leaks...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: connac: Do not check WED status for non-MMIO devices WED is only supported for MMIO devices. Therefore, do not check it for USB or SDIO devices. This patch fixes the crash reported below: 21.946627 wlp0s3u1i3:...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: mt76: fixed the race condition related to the “tx status” after the station removal operation. There is a small race condition where ongoing TX activity can cause an skb to be added to the status tracking IDR, even after that...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76 – Do not call mt76unregisterdevice on unregistered hardware devices. Attempting to probe a mt7921e PCI card without firmware results in a successful probe, but ieee80211registerhw is not called. When removing the drive...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fixed a possible memory leak in the mt7915mcuaddsta routine. The allocated skb was freed in the mt7915mcuaddsta routine in case of failures...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mt76: mt7921s: Fixed a slab-out-of-bounds access in the SDIO host. SDIO may require an additional 511 bytes to align bus operations. If the tailroom of this skb is not sufficient, we might access an invalid memory region...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mt76: Do not run mt76ustatusworker if the device is not running. Fixed the issue of NULL pointer dereferencing, preventing the mt76ustatusworker thread from being executed if the device is not running yet. KASAN:...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: connac: check for null before dereferencing. The wcid can be NULL. It should be checked for validity before dereferencing it to avoid crashes...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921: fixed a kernel crash when calling mt7921pciremove The crash log indicates that it is possible that mt7921irqhandler was called while devmfreeirq was being processed. Therefore, mt76freedevice needs to be postponed...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mt76: mt7996: fixed a memory leak in mt7996mcuexit. The mcuskb queues in the mt7996mcuexit routine must always be purged, even if mt7996firmwarestate fails...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mt76: wed: Use the proper wed reference in mt76 wed driver calls. The MT7996 driver can use both wed and wedhif2 devices to offload traffic from/to the wireless NIC. In the current codebase, we assume to always use the...
CLSA-2026-1778276927 kernel: Fix of 33 CVEs
rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present - xfrm: esp: avoid in-place decrypt on shared skb frags - ext4: avoid OOB when system.data xattr changes underneath the filesystem CVE-2024-47701 - gpiolib: cdev: fix uninitialised kfifo CVE-2024-36898 - wifi: mt76: Fix...
wifi: mt76: Fix possible oob access in mt76_connac2_mac_write_txwi_80211()
...
CVE-2026-23315
A flaw was found in the Linux kernel's mt76 Wi-Fi driver. This vulnerability, an out-of-bounds OOB access, occurs due to an insufficient check of frame length before accessing management fields within the mt76connac2macwritetxwi80211 function. An attacker could potentially exploit this to cause...
CVE-2026-23325
A flaw was found in the Linux kernel's mt76 WiFi driver, specifically within the mt7996 component. This vulnerability, an out-of-bounds OOB access, occurs because the driver does not adequately check the length of incoming data frames before attempting to read or write to memory. A local attacker...
EUVD-2026-15261
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix possible oob access in mt76connac2macwritetxwi80211 Check frame length before accessing the mgmt fields in mt76connac2macwritetxwi80211 in order to avoid a possible oob access. fix check to also cover...