CVE-2026-43225

MEDIUM

staging: rtl8723bs: fix memory leak on failure path

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211_inform_bss_frame() may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix this by ensuring that 'buf' is freed on both success and failure paths.

Scores

CVSS v3 5.5
EPSS 0.0013
EPSS Percentile 2.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-401
Status published
Products (30)
linux/Kernel 4.12.0 - 5.15.202linux
linux/Kernel 5.16.0 - 6.1.165linux
linux/Kernel 6.13.0 - 6.18.16linux
linux/Kernel 6.19.0 - 6.19.6linux
linux/Kernel 6.2.0 - 6.6.128linux
linux/Kernel 6.7.0 - 6.12.75linux
Linux/Linux < 4.12
Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 017295b17bf1f477246c95bd253a7ef0cb4684c9
Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 8311bb40698ba027649d5d1ca84ad4bf25270546
Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 9874e33ce52ba449ab0ade78752a2d37a2294617
... and 20 more
Published May 06, 2026
Tracked Since May 06, 2026