CVE-2026-53179 PUBLISHED

staging: rtl8723bs: fix buffer over-read in rtw_update_protection

Assigner: Linux
Reserved: 09.06.2026 Published: 25.06.2026 Updated: 25.06.2026

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: fix buffer over-read in rtw_update_protection

rtw_update_protection() is called with a pointer offset into the ies buffer but the full ie_length is passed, causing a potential buffer over-read.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from d3fcee1b78a533c256077f1300dd236801397cf7 to 735dabdf21561a24d8bcae456c9c32f7f961a029 (excl.)
  • affected from d3fcee1b78a533c256077f1300dd236801397cf7 to 303f65af819f6d5aa302e82bce72b57a8575faea (excl.)
  • affected from d3fcee1b78a533c256077f1300dd236801397cf7 to 514ab98364595007d4557ecc85d7e5f012c504d3 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 5.15 is affected
  • unaffected from 0 to 5.15 (excl.)
  • unaffected from 6.18.36 to 6.18.* (incl.)
  • unaffected from 7.0.13 to 7.0.* (incl.)
  • unaffected from 7.1 to * (incl.)

References