CVE-2026-43172

HIGH

wifi: iwlwifi: fix 22000 series SMEM parsing

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix 22000 series SMEM parsing If the firmware were to report three LMACs (which doesn't exist in hardware) then using "fwrt->smem_cfg.lmac[2]" is an overrun of the array. Reject such and use IWL_FW_CHECK instead of WARN_ON in this function.

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/1d49a42717bdc8de77eabeb5b7d3e88d141ffea9

https://git.kernel.org/stable/c/2b4b1510aaaf5b9fb57327ecffc20c055f61f205

https://git.kernel.org/stable/c/58192b9ce09b0f0f86e2036683bd542130b91a98

Scores

CVSS v3 8.8

EPSS 0.0002

EPSS Percentile 7.2%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (12)

Linux/Linux < 5.8

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 1d49a42717bdc8de77eabeb5b7d3e88d141ffea9

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 2b4b1510aaaf5b9fb57327ecffc20c055f61f205

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 58192b9ce09b0f0f86e2036683bd542130b91a98

Linux/Linux 5.8

Linux/Linux 6.18.16 - 6.18.*

Linux/Linux 6.19.6 - 6.19.*

Linux/Linux 7.0

Linux/Linux ebfa7f8ae155c9a0bb2e4038d6b5d8b14881c424 - 1d49a42717bdc8de77eabeb5b7d3e88d141ffea9

Linux/Linux ebfa7f8ae155c9a0bb2e4038d6b5d8b14881c424 - 2b4b1510aaaf5b9fb57327ecffc20c055f61f205

... and 2 more

Published May 06, 2026

Tracked Since May 06, 2026