CVE-2026-53179

HIGH

staging: rtl8723bs: fix buffer over-read in rtw_update_protection

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix buffer over-read in rtw_update_protection rtw_update_protection() is called with a pointer offset into the ies buffer but the full ie_length is passed, causing a potential buffer over-read.

Scores

CVSS v3 7.1
EPSS 0.0013
EPSS Percentile 3.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE
CWE-125
Status published
Products (15)
linux/Kernel 5.15.0 - 6.12.95linux
linux/Kernel 6.13.0 - 6.18.36linux
linux/Kernel 6.19.0 - 7.0.13linux
Linux/Linux < 5.15
Linux/Linux 5.15
Linux/Linux 6.12.95 - 6.12.*
Linux/Linux 6.18.36 - 6.18.*
Linux/Linux 7.0.13 - 7.0.*
Linux/Linux 7.1
Linux/Linux d3fcee1b78a533c256077f1300dd236801397cf7 - 303f65af819f6d5aa302e82bce72b57a8575faea
... and 5 more
Published Jun 25, 2026
Tracked Since Jun 25, 2026