CVE-2026-43159 PUBLISHED

staging: rtl8723bs: fix null dereference in find_network

Assigner: Linux
Reserved: 01.05.2026 Published: 06.05.2026 Updated: 06.05.2026

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: fix null dereference in find_network

The variable pwlan has the possibility of being NULL when passed into rtw_free_network_nolock() which would later dereference the variable.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to 3b1d0c9a1f78836d0bce6fdd37f596f22c19b03e (excl.)
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to 1aa9c59f4b96a9056c02476c7ca89e96d15e0645 (excl.)
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to 48b4dec3a8bfd667cd0cd767eaf511176193e9a1 (excl.)
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to cc3f83b6fb3773ad943365d1cd774b4ec050332e (excl.)
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to 04d24a3654ed195485bc6346a9ef326fc494a34e (excl.)
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to 677490a6bd4c63acdf6f48e4aaf6a23d7e6a446f (excl.)
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to 7fa16ffed2b9d9d44940990c1f31159770769aeb (excl.)
  • affected from 554c0a3abf216c991c5ebddcdb2c08689ecd290b to 41460a19654c32d39fd0e3a3671cd8d4b7b8479f (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 4.12 is affected
  • unaffected from 0 to 4.12 (excl.)
  • unaffected from 5.10.253 to 5.10.* (incl.)
  • unaffected from 5.15.202 to 5.15.* (incl.)
  • unaffected from 6.1.165 to 6.1.* (incl.)
  • unaffected from 6.6.128 to 6.6.* (incl.)
  • unaffected from 6.12.75 to 6.12.* (incl.)
  • unaffected from 6.18.16 to 6.18.* (incl.)
  • unaffected from 6.19.6 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References