CVE-2023-53113

MEDIUM

Linux Kernel - NULL Pointer Dereference in WiFi NL80211 Off-Channel Check

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix NULL-ptr deref in offchan check If, e.g. in AP mode, the link was already created by userspace but not activated yet, it has a chandef but the chandef isn't valid and has no channel. Check for this and ignore this link.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/87e80ea4fbc9ce2f2005905fdbcd38baaa47463a

Patch

https://git.kernel.org/stable/c/201a836c2385fdd2b9d0a8e7737bba5b26f1863a

Patch

https://git.kernel.org/stable/c/f624bb6fad23df3270580b4fcef415c6e7bf7705

Scores

CVSS v3 5.5

EPSS 0.0016

EPSS Percentile 5.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (12)

Linux/Linux < 6.0

Linux/Linux 5.19.2 - 5.20

Linux/Linux 6.0

Linux/Linux 6.1.21 - 6.1.*

Linux/Linux 6.2.8 - 6.2.*

Linux/Linux 6.3

Linux/Linux 7a53ad13c09150076b7ddde96c2dfc5622c90b45

Linux/Linux 7b0a0e3c3a88260b6fcb017e49f198463aa62ed1 - 201a836c2385fdd2b9d0a8e7737bba5b26f1863a

Linux/Linux 7b0a0e3c3a88260b6fcb017e49f198463aa62ed1 - 87e80ea4fbc9ce2f2005905fdbcd38baaa47463a

Linux/Linux 7b0a0e3c3a88260b6fcb017e49f198463aa62ed1 - f624bb6fad23df3270580b4fcef415c6e7bf7705

... and 2 more

Published May 02, 2025

Tracked Since Feb 18, 2026