CVE-2026-53318: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check

All of lore.kernel.org
 help / color / mirror / Atom feed

* CVE-2026-53318: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr()
@ 2026-06-26 19:40 Greg Kroah-Hartman
  0 siblings, 0 replies; only message in thread
From: Greg Kroah-Hartman @ 2026-06-26 19:40 UTC (permalink / raw)
  To: linux-cve-announce; +Cc: Greg Kroah-Hartman

From: Greg Kroah-Hartman <gregkh@kernel.org>

Description
===========

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr()

Move the NULL check for 'sta' before dereferencing it to prevent a
possible crash.

The Linux kernel CVE team has assigned CVE-2026-53318 to this issue.


Affected and fixed versions
===========================

	Issue introduced in 6.11 with commit 44eb173bdd4f1775e13fce483d9e44ea8929717f and fixed in 6.12.91 with commit 28ed0b61f67386c0ba1213227d350005000240fd
	Issue introduced in 6.11 with commit 44eb173bdd4f1775e13fce483d9e44ea8929717f and fixed in 6.18.33 with commit 93d0694fb56de4628a921244d7f100c28acd2def
	Issue introduced in 6.11 with commit 44eb173bdd4f1775e13fce483d9e44ea8929717f and fixed in 7.0.10 with commit b0332428a8d4cf93752eda9e2b0d5585525e689f
	Issue introduced in 6.11 with commit 44eb173bdd4f1775e13fce483d9e44ea8929717f and fixed in 7.1 with commit 83ae3a18ba957257b4c406273d2da2caeea2b439

Please see https://www.kernel.org for a full list of currently supported
kernel versions by the kernel community.

Unaffected versions might change over time as fixes are backported to
older supported kernel versions.  The official CVE entry at
	https://cve.org/CVERecord/?id=CVE-2026-53318
will be updated if fixes are backported, please check that for the most
up to date information about this issue.


Affected files
==============

The file(s) affected by this issue are:
	drivers/net/wireless/mediatek/mt76/mt7925/mac.c


Mitigation
==========

The Linux kernel CVE team recommends that you update to the latest
stable kernel version for this, and many other bugfixes.  Individual
changes are never tested alone, but rather are part of a larger kernel
release.  Cherry-picking individual commits is not recommended or
supported by the Linux kernel community at all.  If however, updating to
the latest release is impossible, the individual changes to resolve this
issue can be found at these commits:
	https://git.kernel.org/stable/c/28ed0b61f67386c0ba1213227d350005000240fd
	https://git.kernel.org/stable/c/93d0694fb56de4628a921244d7f100c28acd2def
	https://git.kernel.org/stable/c/b0332428a8d4cf93752eda9e2b0d5585525e689f
	https://git.kernel.org/stable/c/83ae3a18ba957257b4c406273d2da2caeea2b439

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2026-06-26 19:43 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2026-06-26 19:40 CVE-2026-53318: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr() Greg Kroah-Hartman

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.