40 matches found
CVE-2026-46092
A flaw was found in the Linux kernel's rtw88 Wi-Fi driver. When the 8821CE device is installed on a system where it is on a root bus, the driver's probing routine does not properly check for the existence of a PCI upstream bridge. This oversight can lead to a system crash, resulting in a denial o...
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the rtw88 driver not checking whether the PCI upstream bridge exists. This could lead to a crash during...
Linux Distros Unpatched Vulnerability : CVE-2026-46092
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: rtw88: check for PCI upstream bridge existence pciupstreambridge returns NULL if the device is on a root bus. If 8821CE is installed in the system with su...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: wifi: rtw88: use a work to update the rate to avoid RCU warnings. The ieee80211ops::starcupdate function must be atomic, because ieee80211chanbwchange holds a rcuread lock while calling drvstarcupdate. Therefore, a work must b...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: rtw88 – Fixed device reference leaks on probe failures. The driver core holds a reference to the USB interface and its parent USB device while the interface is bound to the driver. There is no need to hold additional...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: rtw88: Fixed an array overflow in rtwgettxpowerparams When using the kernel with the Undefined Behaviour Sanity Checker UBSAN enabled, the following array overflow was logged:...
SUSE CVE-2025-71273
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: Use devmkmemdup in rtwsetsupportedband Simplify the code by using device managed memory allocations. This also fixes a memory leak in rtwregisterhw. The supported bands were not freed in the error path. Copied from...
CVE-2025-71273
A flaw was found in the Linux kernel's rtw88 Wi-Fi driver. This vulnerability is caused by a memory leak within the rtwregisterhw function, where memory allocated for supported bands is not properly released during error conditions. This could allow a local attacker to exhaust system memory,...
CVE-2025-71273
The CVE-2025-71273 entry concerns the Linux kernel’s rtw88 Wi‑Fi driver. The issue arises from a memory leak in rtw_register_hw(), where memory allocated for supported bands was not freed on error paths. The patch standardizes memory allocation using device-managed memory (devm_kmemdup()) in rtw_...
CVE-2026-31604
A flaw was found in the Linux kernel's rtw88 Wi-Fi driver. This vulnerability occurs when the driver fails to release a reference to a Universal Serial Bus USB device during certain probe errors, such as when descriptor parsing fails. A local attacker could potentially trigger this condition by...
DEBIAN-CVE-2026-31604
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while the interface is bound to a driver and there is no need to take additional references unless the...
CVE-2026-31604
The CVE-2026-31604 issue concerns the Linux kernel’s wifi: rtw88 driver. A memory leak arose because the driver grabbing a reference to the USB device during probe did not release it on all probe errors (e.g., descriptor parsing failures) while the interface remained bound to a driver. The fix dr...
EUVD-2026-25497
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while the interface is bound to a driver and there is no need to take additional references unless the...
CVE-2026-31604 wifi: rtw88: fix device leak on probe failure
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while the interface is bound to a driver and there is no need to take additional references unless the...
CVE-2026-31604 wifi: rtw88: fix device leak on probe failure
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while the interface is bound to a driver and there is no need to take additional references unless the...
PT-2026-34956
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A device leak exists in the rtw88 wifi driver. The driver takes a reference to the USB device during the probe process but fails to release it when certain probe errors occur, such as...
CVE-2025-71229
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: Fix alignment fault in rtwcoreenablebeacon rtwcoreenablebeacon reads 4 bytes from an address that is not a multiple of 4. This results in a crash on some systems. Do 1 byte reads/writes instead. Unable to handle kern...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: use ieee80211purgetxqueue to purge TX skb When removing kernel modules by: rmmod rtw888723cs rtw888703b rtw888723x rtw88sdio rtw88core Driver uses skbqueuepurge to purge TX skb, but not report tx status causing "Have...
EUVD-2023-60255
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: use work to update rate to avoid RCU warning The ieee80211ops::starcupdate must be atomic, because ieee80211chanbwchange holds rcuread lock while calling drvstarcupdate, so create a work to do original things...
Linux Distros Unpatched Vulnerability : CVE-2023-53574
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: rtw88: delete timer and free skb queue when unloading Fix possible crash and memory leak on driver unload by deleting TX purge timer and freeing C2H queue...